CVE-2025-66602

EPSS 0.3%
Veröffentlicht 09.02.2026 03:16:47
Zuletzt bearbeitet 05.03.2026 13:19:38
Quelle 7168b535-132a-4efe-a076-338f82
CVE-Watchlists
Login
Unerledigt
Login

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation.



The web server accepts
access by IP address. When a worm that randomly searches for IP addresses
intrudes into the network, it could potentially be attacked by the worm.



The
affected products and versions are as follows: FAST/TOOLS (Packages: RVSVRN, UNSVRN, HMIWEB, FTEES, HMIMOB) R9.01 to
R10.04

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

NVD 0 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.3%	0.215

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7168b535-132a-4efe-a076-338f829b2eb9	6.9	0	0	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CWE-291 Reliance on IP Address for Authentication

The product uses an IP address for authentication.

https://web-material3.yokogawa.com/1/39206/files/YSAR-26-0001-E.pdf

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2025-66602

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-66602

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-66602

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2025-66602