Skip to main content

Fast Tools

13 CVEs product

Monthly

CVE-2026-11833 HIGH CISA This Week

Information disclosure in Yokogawa FAST/TOOLS (R9.01-R10.04) and CI Server (R1.01-R1.04) allows unmodified network attackers to retrieve CI Server configuration data via the embedded web server. The leaked settings can be leveraged as reconnaissance fuel for follow-on attacks against the SCADA/automation environment. No public exploit identified at time of analysis, and the issue is not present in CISA KEV.

Information Disclosure Fast Tools Ci Server
NVD VulDB
CVSS 4.0
8.2
EPSS
0.2%
CVE-2025-66598 HIGH This Week

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. This product supports old SSL/TLS versions, potentially allowing an attacker to decrypt communications with the web server. [CVSS 7.5 HIGH]

Information Disclosure Fast Tools
NVD
CVSS 3.1
7.5
EPSS
0.0%
CVE-2025-66597 HIGH This Week

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. This product supports weak cryptographic algorithms, potentially allowing an attacker to decrypt communications with the web server. [CVSS 7.5 HIGH]

Information Disclosure Fast Tools
NVD
CVSS 3.1
7.5
EPSS
0.0%
CVE-2025-66595 MEDIUM This Month

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. This product is vulnerable to Cross-Site Request Forgery (CSRF). [CVSS 5.4 MEDIUM]

CSRF Fast Tools
NVD
CVSS 3.1
5.4
EPSS
0.0%
CVE-2025-66594 MEDIUM This Month

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. Detailed messages are displayed on the error page. [CVSS 5.3 MEDIUM]

Information Disclosure Fast Tools
NVD
CVSS 3.1
5.3
EPSS
0.0%
CVE-2025-66608 HIGH This Week

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. This product does not properly validate URLs. [CVSS 7.5 HIGH]

Information Disclosure Fast Tools
NVD
CVSS 3.1
7.5
EPSS
0.1%
CVE-2025-66607 MEDIUM This Month

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. The response header contains an insecure setting. [CVSS 5.3 MEDIUM]

Information Disclosure Fast Tools
NVD
CVSS 3.1
5.3
EPSS
0.0%
CVE-2025-66606 CRITICAL Act Now

Yokogawa FAST/TOOLS has a third vulnerability involving improper encoding of output that could enable injection attacks against the SCADA web interface.

Information Disclosure Fast Tools
NVD
CVSS 3.1
9.6
EPSS
0.0%
CVE-2025-66605 MEDIUM This Month

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. Since there are input fields on this webpage with the autocomplete attribute enabled, the input content could be saved in the browser the user is using. [CVSS 5.3 MEDIUM]

Information Disclosure Fast Tools
NVD
CVSS 3.1
5.3
EPSS
0.0%
CVE-2025-66604 MEDIUM This Month

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. The library version could be displayed on the web page. [CVSS 5.3 MEDIUM]

Information Disclosure Fast Tools
NVD
CVSS 3.1
5.3
EPSS
0.0%
CVE-2025-66603 CRITICAL Act Now

Yokogawa FAST/TOOLS has a second web server vulnerability involving improper cryptographic handling that weakens the security of SCADA communications.

Information Disclosure Fast Tools
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-66602 CRITICAL Act Now

Yokogawa FAST/TOOLS SCADA has a vulnerability in its web server component enabling unauthorized access to the industrial control monitoring system.

Information Disclosure Fast Tools
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-66601 MEDIUM This Month

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. This product does not specify MIME types. [CVSS 6.1 MEDIUM]

Information Disclosure Fast Tools
NVD
CVSS 3.1
6.1
EPSS
0.0%
EPSS 0% CVSS 8.2
HIGH This Week

Information disclosure in Yokogawa FAST/TOOLS (R9.01-R10.04) and CI Server (R1.01-R1.04) allows unmodified network attackers to retrieve CI Server configuration data via the embedded web server. The leaked settings can be leveraged as reconnaissance fuel for follow-on attacks against the SCADA/automation environment. No public exploit identified at time of analysis, and the issue is not present in CISA KEV.

Information Disclosure Fast Tools Ci Server
NVD VulDB
EPSS 0% CVSS 7.5
HIGH This Week

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. This product supports old SSL/TLS versions, potentially allowing an attacker to decrypt communications with the web server. [CVSS 7.5 HIGH]

Information Disclosure Fast Tools
NVD
EPSS 0% CVSS 7.5
HIGH This Week

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. This product supports weak cryptographic algorithms, potentially allowing an attacker to decrypt communications with the web server. [CVSS 7.5 HIGH]

Information Disclosure Fast Tools
NVD
EPSS 0% CVSS 5.4
MEDIUM This Month

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. This product is vulnerable to Cross-Site Request Forgery (CSRF). [CVSS 5.4 MEDIUM]

CSRF Fast Tools
NVD
EPSS 0% CVSS 5.3
MEDIUM This Month

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. Detailed messages are displayed on the error page. [CVSS 5.3 MEDIUM]

Information Disclosure Fast Tools
NVD
EPSS 0% CVSS 7.5
HIGH This Week

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. This product does not properly validate URLs. [CVSS 7.5 HIGH]

Information Disclosure Fast Tools
NVD
EPSS 0% CVSS 5.3
MEDIUM This Month

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. The response header contains an insecure setting. [CVSS 5.3 MEDIUM]

Information Disclosure Fast Tools
NVD
EPSS 0% CVSS 9.6
CRITICAL Act Now

Yokogawa FAST/TOOLS has a third vulnerability involving improper encoding of output that could enable injection attacks against the SCADA web interface.

Information Disclosure Fast Tools
NVD
EPSS 0% CVSS 5.3
MEDIUM This Month

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. Since there are input fields on this webpage with the autocomplete attribute enabled, the input content could be saved in the browser the user is using. [CVSS 5.3 MEDIUM]

Information Disclosure Fast Tools
NVD
EPSS 0% CVSS 5.3
MEDIUM This Month

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. The library version could be displayed on the web page. [CVSS 5.3 MEDIUM]

Information Disclosure Fast Tools
NVD
EPSS 0% CVSS 9.8
CRITICAL Act Now

Yokogawa FAST/TOOLS has a second web server vulnerability involving improper cryptographic handling that weakens the security of SCADA communications.

Information Disclosure Fast Tools
NVD
EPSS 0% CVSS 9.8
CRITICAL Act Now

Yokogawa FAST/TOOLS SCADA has a vulnerability in its web server component enabling unauthorized access to the industrial control monitoring system.

Information Disclosure Fast Tools
NVD
EPSS 0% CVSS 6.1
MEDIUM This Month

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. This product does not specify MIME types. [CVSS 6.1 MEDIUM]

Information Disclosure Fast Tools
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy