← back
CVE-2025-10151

Malicious TCP/IP thread locking leads into diverse malfunctions

CVSS 7.2 HIGHEPSS 0.2%CWE-667
Improper locking vulnerability in Softing Industrial Automation GmbH gateways allows infected memory and/or resource leak exposure.This issue affects smartLink HW-PN: from 1.02 through 1.03 smartLink HW-DP: 1.31
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:L/VA:L/SC:H/SI:L/SA:L/AU:Y/R:U/RE:M/U:Amber
Affected products
Softing Industrial Automation GmbH · smartLink HW-DPSofting Industrial Automation GmbH · smartLink HW-PN

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://https://industrial.softing.com/fileadmin/psirt/downloads/2025/CVE-2025-10151.htmlhttps://https://industrial.softing.com/fileadmin/psirt/downloads/2025/CVE-2025-10151.json