Content Sniffing Vulnerability in FAST/TOOLS by Yokogawa Electric Corporation
CVE-2025-66601

6.3MEDIUM

Key Information:

Vendor: Yokogawa Electric Corporation
Status: Fast/tools
Vendor: CVE Published:; 9 February 2026

🔔 Create Yokogawa Electric Corporation Vulnerability Alert

What is CVE-2025-66601?

A security vulnerability exists in FAST/TOOLS developed by Yokogawa Electric Corporation, due to the absence of specified MIME types. This oversight allows attackers to exploit content sniffing attacks, potentially leading to unauthorized execution of malicious scripts. Affected versions include FAST/TOOLS RVSVRN, UNSVRN, HMIWEB, FTEES, and HMIMOB from R9.01 to R10.04. Organizations using these products should take immediate steps to mitigate the risks associated with this vulnerability.

Affected Version(s)

FAST/TOOLS R9.01

References

https://web-material3.yokogawa.com/1/39206/files/YSAR-26-...

CVSS V4

Score:

6.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 9, 2026
Vulnerability Reserved
Dec 5, 2025

CVE-2025-66601 Data

JSON