← back
CVE-2025-66608

CVE-2025-66608

CVSS 8.7 HIGHEPSS 0.4%CWE-29
A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. This product does not properly validate URLs. An attacker could send specially crafted requests to steal files from the web server. The affected products and versions are as follows: FAST/TOOLS (Packages: RVSVRN, UNSVRN, HMIWEB, FTEES, HMIMOB) R9.01 to R10.04
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
Affected products
Yokogawa Electric Corporation · FAST/TOOLS

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://web-material3.yokogawa.com/1/39206/files/YSAR-26-0001-E.pdf