CVE-2025-66608

Summary

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation.

This product does not properly validate URLs. An attacker could send specially crafted requests to steal files from the web server.

The affected products and versions are as follows: FAST/TOOLS (Packages: RVSVRN, UNSVRN, HMIWEB, FTEES, HMIMOB) R9.01 to R10.04

Affected Software

VendorProductVersion RangeStatus
Yokogawa Electric CorporationFAST/TOOLSR9.01 <= R10.04affected

Weaknesses

  • CWE-29: CWE-29

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References