{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-13406", "assignerOrgId": "10de8ef9-5c89-4b17-8228-e97b74acf4bd", "state": "PUBLISHED", "assignerShortName": "Softing", "dateReserved": "2025-11-19T14:07:24.595Z", "datePublished": "2026-03-17T14:32:21.500Z", "dateUpdated": "2026-03-27T08:09:49.360Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "10de8ef9-5c89-4b17-8228-e97b74acf4bd", "shortName": "Softing", "dateUpdated": "2026-03-27T08:09:49.360Z"}, "title": "Scanning for higher HART revision device leads into NULL pointer dereference in live list", "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-476", "description": "CWE-476 NULL Pointer Dereference", "type": "CWE"}]}], "impacts": [{"capecId": "CAPEC-469", "descriptions": [{"lang": "en", "value": "CAPEC-469 HTTP DoS"}]}], "affected": [{"vendor": "Softing", "product": "smartLink SW-HT", "modules": ["Webserver"], "versions": [{"status": "affected", "version": "1.43", "versionType": "custom"}, {"status": "unaffected", "version": "1.43.1", "versionType": "custom"}], "defaultStatus": "unaffected"}], "cpeApplicability": [{"operator": "OR", "nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:softing:smartlink_sw-ht:1.43:*:*:*:*:*:*:*"}, {"vulnerable": false, "criteria": "cpe:2.3:a:softing:smartlink_sw-ht:1.43.1:*:*:*:*:*:*:*"}]}]}], "descriptions": [{"lang": "en", "value": "NULL Pointer Dereference vulnerability in Softing Industrial Automation GmbH smartLink SW-HT (Webserver modules) allows HTTP DoS.This issue affects smartLink SW-HT: 1.43.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "NULL Pointer Dereference vulnerability in Softing Industrial Automation GmbH smartLink SW-HT (Webserver modules) allows HTTP DoS.<p>This issue affects smartLink SW-HT: 1.43.</p>"}]}], "references": [{"url": "https://industrial.softing.com/fileadmin/psirt/downloads/2025/CVE-2025-13406.html"}, {"url": "https://industrial.softing.com/fileadmin/psirt/downloads/2025/CVE-2025-13406.json"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV4_0": {"attackVector": "NETWORK", "attackComplexity": "LOW", "attackRequirements": "PRESENT", "privilegesRequired": "HIGH", "userInteraction": "ACTIVE", "vulnConfidentialityImpact": "NONE", "subConfidentialityImpact": "NONE", "vulnIntegrityImpact": "NONE", "subIntegrityImpact": "NONE", "vulnAvailabilityImpact": "HIGH", "subAvailabilityImpact": "HIGH", "exploitMaturity": "NOT_DEFINED", "Safety": "NOT_DEFINED", "Automatable": "YES", "Recovery": "AUTOMATIC", "valueDensity": "NOT_DEFINED", "vulnerabilityResponseEffort": "LOW", "providerUrgency": "RED", "version": "4.0", "baseSeverity": "MEDIUM", "baseScore": 6.8, "vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H/AU:Y/R:A/RE:L/U:Red"}}], "solutions": [{"lang": "en", "value": "Update smartLink SW-HT to patch V1.43.1 firmware.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "<p>Update smartLink SW-HT to patch V1.43.1 firmware.</p>\n\n<br>"}]}], "source": {"discovery": "USER"}, "x_generator": {"engine": "Vulnogram 0.5.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-17T14:49:34.753139Z", "id": "CVE-2025-13406", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-17T14:50:30.323Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-13406", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-03-17T14:49:34.753139Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-17T14:49:58.782Z"}}], "cna": {"title": "Scanning for higher HART revision device leads into NULL pointer dereference in live list", "source": {"discovery": "USER"}, "impacts": [{"capecId": "CAPEC-469", "descriptions": [{"lang": "en", "value": "CAPEC-469 HTTP DoS"}]}], "metrics": [{"format": "CVSS", "cvssV4_0": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "AUTOMATIC", "baseScore": 6.8, "Automatable": "YES", "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H/AU:Y/R:A/RE:L/U:Red", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "RED", "userInteraction": "ACTIVE", "attackComplexity": "LOW", "attackRequirements": "PRESENT", "privilegesRequired": "HIGH", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "NONE", "subAvailabilityImpact": "HIGH", "vulnAvailabilityImpact": "HIGH", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "NONE", "vulnerabilityResponseEffort": "LOW"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Softing", "modules": ["Webserver"], "product": "smartLink SW-HT", "versions": [{"status": "affected", "version": "1.43", "versionType": "custom"}, {"status": "unaffected", "version": "1.43.1", "versionType": "custom"}], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "Update smartLink SW-HT to patch V1.43.1 firmware.", "supportingMedia": [{"type": "text/html", "value": "<p>Update smartLink SW-HT to patch V1.43.1 firmware.</p>\n\n<br>", "base64": false}]}], "references": [{"url": "https://industrial.softing.com/fileadmin/psirt/downloads/2025/CVE-2025-13406.html"}, {"url": "https://industrial.softing.com/fileadmin/psirt/downloads/2025/CVE-2025-13406.json"}], "x_generator": {"engine": "Vulnogram 0.5.0"}, "descriptions": [{"lang": "en", "value": "NULL Pointer Dereference vulnerability in Softing Industrial Automation GmbH smartLink SW-HT (Webserver modules) allows HTTP DoS.This issue affects smartLink SW-HT: 1.43.", "supportingMedia": [{"type": "text/html", "value": "NULL Pointer Dereference vulnerability in Softing Industrial Automation GmbH smartLink SW-HT (Webserver modules) allows HTTP DoS.<p>This issue affects smartLink SW-HT: 1.43.</p>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-476", "description": "CWE-476 NULL Pointer Dereference"}]}], "cpeApplicability": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:softing:smartlink_sw-ht:1.43:*:*:*:*:*:*:*", "vulnerable": true}, {"criteria": "cpe:2.3:a:softing:smartlink_sw-ht:1.43.1:*:*:*:*:*:*:*", "vulnerable": false}], "operator": "OR"}], "operator": "OR"}], "providerMetadata": {"orgId": "10de8ef9-5c89-4b17-8228-e97b74acf4bd", "shortName": "Softing", "dateUpdated": "2026-03-27T08:09:49.360Z"}}}, "cveMetadata": {"cveId": "CVE-2025-13406", "state": "PUBLISHED", "dateUpdated": "2026-03-27T08:09:49.360Z", "dateReserved": "2025-11-19T14:07:24.595Z", "assignerOrgId": "10de8ef9-5c89-4b17-8228-e97b74acf4bd", "datePublished": "2026-03-17T14:32:21.500Z", "assignerShortName": "Softing"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "NULL Pointer Dereference vulnerability in Softing Industrial Automation GmbH smartLink SW-HT (Webserver modules) allows HTTP DoS.This issue affects smartLink SW-HT: 1.43."}, {"lang": "es", "value": "Vulnerabilidad de desreferencia de puntero NULL en Softing Industrial Automation GmbH smartLink SW-HT (m\u00f3dulos de servidor web) permite DoS HTTP. Este problema afecta a smartLink SW-HT: 1.43."}], "id": "CVE-2025-13406", "lastModified": "2026-03-27T09:16:18.277", "metrics": {"cvssMetricV40": [{"cvssData": {"Automatable": "YES", "Recovery": "AUTOMATIC", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "PRESENT", "attackVector": "NETWORK", "availabilityRequirement": "NOT_DEFINED", "baseScore": 6.8, "baseSeverity": "MEDIUM", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "HIGH", "providerUrgency": "RED", "subAvailabilityImpact": "HIGH", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "ACTIVE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:A/V:X/RE:L/U:Red", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "NONE", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "LOW"}, "source": "10de8ef9-5c89-4b17-8228-e97b74acf4bd", "type": "Secondary"}]}, "published": "2026-03-17T15:16:15.143", "references": [{"source": "10de8ef9-5c89-4b17-8228-e97b74acf4bd", "url": "https://industrial.softing.com/fileadmin/psirt/downloads/2025/CVE-2025-13406.html"}, {"source": "10de8ef9-5c89-4b17-8228-e97b74acf4bd", "url": "https://industrial.softing.com/fileadmin/psirt/downloads/2025/CVE-2025-13406.json"}], "sourceIdentifier": "10de8ef9-5c89-4b17-8228-e97b74acf4bd", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-476"}], "source": "10de8ef9-5c89-4b17-8228-e97b74acf4bd", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "1.43"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "semver", "value": "1.43.1"}}], "enrichment": {"confidence": 95.0, "confidence_source": "inferred", "scores": [{"score": 95.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "original": {"product": "smartLink SW-HT", "source": "cna", "vendor": "Softing"}, "product": "smartlink_sw-ht", "vendor": "softing"}], "analysis": {"en": {"generated_at": "2026-03-17T16:46:06.221556+00:00", "value": {"mitigation_remediation": ["Update the smartLink SW-HT firmware to version 1.43.1 according to the vendor patch.", "If immediate patching is not possible, block or restrict HTTP access to the webserver\u2019s management interface from untrusted networks."], "summary": {"action": "Apply Patch", "impact": "Denial of Service"}, "threat_synthesis": {"affected_systems": "Softing Industrial Automation GmbH smartLink SW-HT Webserver modules are affected. The vulnerability impacts firmware version 1.43, as indicated by the vendor advisory and the listed CPE string. No other versions are listed as affected.", "description_and_impact": "A null pointer dereference in the smartLink SW-HT webserver modules is triggered by scanning for higher HART revision devices. The vulnerability causes the webserver to crash, leading to a denial of service. It is identified as a CWE-476 weakness, affecting the availability of the device without compromising confidentiality or integrity.", "risk_and_exploitability": "The CVSS score is 6.8, reflecting moderate severity. EPSS data are not available, so the likelihood of exploitation cannot be quantified. The vulnerability is not in the CISA KEV catalog. Exploit requires an HTTP request to the webserver, implying a local or network\u2011based attack vector. The risk is moderate, and the vulnerability is exploitable by any host that can reach the webserver over HTTP."}}}}, "created": "2026-03-18T12:13:22.244949+00:00", "updated": "2026-03-24T10:49:17.165697+00:00", "vendors": ["softing", "softing$PRODUCT$smartlink_sw-ht"]}