CVE-2025-10151
7.2
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:L/VA:L/SC:H/SI:L/SA:L/AU:Y/R:U/RE:M/U:Amber
Summary
Improper locking vulnerability in Softing Industrial Automation GmbH gateways allows infected memory and/or resource leak exposure.This issue affects
smartLink HW-PN: from 1.02 through 1.03
smartLink HW-DP: 1.31
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Softing Industrial Automation GmbH | smartLink HW-PN | 1.02 <= 1.03 | affected |
| Softing Industrial Automation GmbH | smartLink HW-DP | 0 <= 1.31 | affected |
Weaknesses
- CWE-667: CWE-667 Improper Locking
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://https://industrial.softing.com/fileadmin/psirt/downloads/2025/CVE-2025-10151.html
- https://https://industrial.softing.com/fileadmin/psirt/downloads/2025/CVE-2025-10151.json
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.