← back
CVE-2025-66606

CVE-2025-66606

CVSS 2.1 LOWEPSS 0.2%CWE-86
A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. This product does not properly encode URLs. An attacker could tamper with web pages or execute malicious scripts. The affected products and versions are as follows: FAST/TOOLS (Packages: RVSVRN, UNSVRN, HMIWEB, FTEES, HMIMOB) R9.01 to R10.04
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:A/VC:L/VI:N/VA:N/SC:L/SI:N/SA:N
Affected products
Yokogawa Electric Corporation · FAST/TOOLS

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://web-material3.yokogawa.com/1/39206/files/YSAR-26-0001-E.pdf