CVE 8.8 HIGH

CVE-2025-66600_CVE-2025-66600

February 8, 2026 invoker category_cve

8.8 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N

Description

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation.

This product lacks
HSTS (HTTP Strict Transport Security) configuration. When an attacker performs
a Man in the middle (MITM) attack, communications with the web server could be
sniffed.

The
affected products and versions are as follows: FAST/TOOLS (Packages: RVSVRN, UNSVRN, HMIWEB, FTEES, HMIMOB) R9.01 to
R10.04

AI Analysis

Lack of HSTS configuration in FAST/TOOLS allows for Man-in-the-Middle attacks

Basic Information

ID CVE-2025-66600

Source YokogawaGroup

Published Feb 9, 2026 at 03:24

Affected Product

Vendor Yokogawa Electric Corporation

Product FAST/TOOLS

Version R9.01

Affected Versions Yokogawa Electric Corporation FAST/TOOLS R9.01

CWE Classification

CWE-358

AI Assessment

AI Score 8.8 / 10

AI Severity High

Vendor Yokogawa Electric Corporation

Product FAST/TOOLS

Version R9.01 to R10.04

References

web-material3.yokogawa.com /1/39206/files/YSAR-26-0001-E.pdf

{
    "lastseen": "",
    "description": "A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation.\n\n\n\nThis product lacks\nHSTS (HTTP Strict Transport Security) configuration. When an attacker performs\na Man in the middle (MITM) attack, communications with the web server could be\nsniffed.\n\n\n\nThe\naffected products and versions are as follows: FAST/TOOLS (Packages: RVSVRN, UNSVRN, HMIWEB, FTEES, HMIMOB) R9.01 to\nR10.04",
    "published": "2026-02-09T03:24:33.044Z",
    "modified": "2026-02-09T03:24:33.044Z",
    "type": "cve",
    "title": "CVE-2025-66600",
    "source": "YokogawaGroup",
    "references": "https://web-material3.yokogawa.com/1/39206/files/YSAR-26-0001-E.pdf",
    "id": "CVE-2025-66600",
    "bulletinFamily": "",
    "cwe": [
        "CWE-358"
    ],
    "cvelist": null,
    "sourceData": "Yokogawa Electric Corporation FAST/TOOLS R9.01",
    "sourceHref": "",
    "cvss": {
        "score": 8.8,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "FAST/TOOLS",
    "version": "R9.01",
    "vendor": "Yokogawa Electric Corporation",
    "ai_description": "Lack of HSTS configuration in FAST/TOOLS allows for Man-in-the-Middle attacks",
    "ai_severity": "High",
    "ai_vendor": "Yokogawa Electric Corporation",
    "ai_product": "FAST/TOOLS",
    "ai_version": "R9.01 to R10.04",
    "ai_score": 8.8
}

💭 Join the Security Discussion ❌ Cancel Reply