CVE-2025-66607

Опубликовано: 09 фев. 2026

Источник: nvd

CVSS3: 5.3

EPSS Низкий

Описание

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation.

The response header contains an insecure setting. Users could be redirected to malicious sites by an attacker.

The affected products and versions are as follows: FAST/TOOLS (Packages: RVSVRN, UNSVRN, HMIWEB, FTEES, HMIMOB) R9.01 to R10.04

Ссылки

https://web-material3.yokogawa.com/1/39206/files/YSAR-26-0001-E.pdf
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:yokogawa:fast\/tools:*:*:*:*:*:*:*:*

Версия от r9.01 (включая) до r10.04 (включая)

EPSS

Процентиль: 6%

0.00169

Низкий

5.3 Medium

CVSS3

Дефекты

CWE-358

Связанные уязвимости

GHSA-g656-6xfv-vcqx

CVSS3: 5.3

github

5 месяцев назад

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. The response header contains an insecure setting. Users could be redirected to malicious sites by an attacker. The affected products and versions are as follows: FAST/TOOLS (Packages: RVSVRN, UNSVRN, HMIWEB, FTEES, HMIMOB) R9.01 to R10.04

BDU:2026-01851

CVSS3: 6.5

fstec