147 matches found
PT-2026-7055
A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. The response header contains an insecure setting. Users could be redirected to malicious sites by an attacker. The affected products and versions are as follows: FAST/TOOLS Packages: RVSVRN, UNSVRN, HMIWEB,...
Yokogawa FAST/TOOLS 安全漏洞
Yokogawa FAST/TOOLS is a real-time operation management and visualization software developed by Yokogawa Electric Corporation. There are security vulnerabilities in the versions of Yokogawa FAST/TOOLS from R9.01 to R10.04. These vulnerabilities stem from improper URL validation, allowing attacker...
PT-2026-7049
A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. This product does not specify MIME types. When an attacker performs a content sniffing attack, malicious scripts could be executed. The affected products and versions are as follows: FAST/TOOLS Packages: RVSVR...
PT-2026-7062
A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. This product supports weak cryptographic algorithms, potentially allowing an attacker to decrypt communications with the web server. The affected products and versions are as follows: FAST/TOOLS Packages:...
EUVD-2014-7122
Malware in sbrugna...
EUVD-2024-32667
Malicious code in bioql PyPI...
EUVD-2024-32668
Malicious code in bioql PyPI...
Yokogawa FAST/TOOLS and CI Server
View CSAF 1. EXECUTIVE SUMMARY CVSS v4 6.9 ATTENTION : Exploitable remotely/low attack complexity Vendor : Yokogawa Equipment : FAST/TOOLS and CI Server Vulnerabilities : Cross-site Scripting, Empty Password in Configuration File 2. RISK EVALUATION Successful exploitation of these vulnerabilities...
CVE-2024-4106
A vulnerability has been found in FAST/TOOLS and CI Server. The affected products have built-in accounts with no passwords set. Therefore, if the product is operated without a password set by default, an attacker can break into the affected product. The affected products and versions are as...
CVE-2024-4105
A vulnerability has been found in FAST/TOOLS and CI Server. The affected product's WEB HMI server's function to process HTTP requests has a security flaw Reflected XSS that allows the execution of malicious scripts. Therefore, if a client PC with inadequate security measures accesses a product UR...
CVE-2024-4106
A vulnerability has been found in FAST/TOOLS and CI Server. The affected products have built-in accounts with no passwords set. Therefore, if the product is operated without a password set by default, an attacker can break into the affected product. The affected products and versions are as...
CVE-2024-4106
A vulnerability has been found in FAST/TOOLS and CI Server. The affected products have built-in accounts with no passwords set. Therefore, if the product is operated without a password set by default, an attacker can break into the affected product. The affected products and versions are as...
CVE-2024-4106
Summary (CVE-2024-4106) Yokogawa FAST/TOOLS and CI Server are affected by an authentication issue due to built-in accounts with no passwords. Affected versions: FAST/TOOLS R9.01–R10.04 (Packages RVSVRN, UNSVRN, HMIWEB, FTEES, HMIMOB) and CI Server R1.01.00–R1.03.00. The CISA/ICS advisory details ...
CVE-2024-4105
A vulnerability has been found in FAST/TOOLS and CI Server. The affected product's WEB HMI server's function to process HTTP requests has a security flaw Reflected XSS that allows the execution of malicious scripts. Therefore, if a client PC with inadequate security measures accesses a product UR...
CVE-2024-4105
A vulnerability has been found in FAST/TOOLS and CI Server. The affected product's WEB HMI server's function to process HTTP requests has a security flaw Reflected XSS that allows the execution of malicious scripts. Therefore, if a client PC with inadequate security measures accesses a product UR...
CVE-2024-4105
CVE-2024-4105 affects Yokogawa FAST/TOOLS and CI Server. The issue is a reflected XSS in the WEB HMI server when processing HTTP requests, which could allow a malicious script to execute in a client browser. Affected products/versions: FAST/TOOLS RVSVRN/UNSVRN/HMIWEB/FTEES/HMIMOB (R9.01–R10.04) a...
Yokogawa FAST/TOOLS Security Breach
Yokogawa FAST/TOOLS is a real-time operations management and visualization software from Yokogawa Electric Yokogawa Corporation, Japan. A security vulnerability exists in Yokogawa FAST/TOOLS versions R9.01 through R10.04, and Collaborative Information Server versions R1.01.00 through R1.03.00,...
Yokogawa Vnet/IP Open Communication Driver Denial-of-Service (ICSA-19-003-02)
Binary data 720286.prm...
CVE-2018-16196
Multiple Yokogawa products that contain Vnet/IP Open Communication Driver CENTUM CS 3000R3.05.00 - R3.09.50, CENTUM CS 3000 Entry ClassR3.05.00 - R3.09.50, CENTUM VPR4.01.00 - R6.03.10, CENTUM VP Entry ClassR4.01.00 - R6.03.10, ExaopcR3.10.00 - R3.75.00, PRMR2.06.00 - R3.31.00, ProSafe-RSR1.02.00...
Design/Logic Flaw
Multiple Yokogawa products that contain Vnet/IP Open Communication Driver CENTUM CS 3000R3.05.00 - R3.09.50, CENTUM CS 3000 Entry ClassR3.05.00 - R3.09.50, CENTUM VPR4.01.00 - R6.03.10, CENTUM VP Entry ClassR4.01.00 - R6.03.10, ExaopcR3.10.00 - R3.75.00, PRMR2.06.00 - R3.31.00, ProSafe-RSR1.02.00...