CVE-2025-10685

UNKNOWN 0.0

HTTP POST with specific higher content length leads into heap corruption

CVSS Score

0.0

EPSS Score

0.1%

EPSS Percentile

17th

Heap-based buffer overflow vulnerability in Softing Industrial Automation GmbH smartLink SW-PN and smartLink SW-HT (Webserver modules) allows overflow buffers.This issue affects: smartLink SW-PN: through 1.03 smartLink SW-HT: through 1.42

CWE	CWE-122
Vendor	softing
Product	smartlink sw-pn
Published	Mar 16, 2026
Last Updated	Mar 27, 2026

Stay Ahead of the Next One

Get instant alerts for softing smartlink sw-pn

Be the first to know when new unknown vulnerabilities affecting softing smartlink sw-pn are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Softing / smartLink SW-PN

0 ≤ 1.03

Softing / smartLink SW-HT

0 ≤ 1.42

References

NVD ↗ CVE.org ↗ EPSS Data ↗

industrial.softing.com: https://industrial.softing.com/fileadmin/psirt/downloads/2025/CVE-2025-10685.html industrial.softing.com: https://industrial.softing.com/fileadmin/psirt/downloads/2025/CVE-2025-10685.json

Credits

Frank Renner