Improper input validation in Softing Smartlink Sw-ht
CVE-2025-10461
Global file reads caused by improper URL checks in webserver in Softing Industrial Automation GmbH smartLinks on docker (filesystem modules) allows file access. This issue affects smartLink SW-HT: through 1.42 smartLink SW-PN: through…
Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)
EPSS: 0.000 (13.0th percentile) — read the EPSS interpretation.
Affected products
- Softing Smartlink Sw-ht — versions 0, 1.43
- Softing Smartlink Sw-pn — versions 0, 1.04