Primary

Context

Yokogawa FAST/TOOLS Open Redirect Vulnerability

Vulnerability

Patched

An open redirect vulnerability has been identified in Yokogawa FAST/TOOLS versions R9.01 to R10.04, across several packages including RVSVRN, UNSVRN, HMIWEB, FTEES, and HMIMOB. The vulnerability arises because the application fails to properly validate request headers. This flaw allows attackers to insert invalid host headers, potentially redirecting users to malicious websites.

Impact

Exploitation of this vulnerability could lead to unauthorized redirection of users to malicious sites.

Remediation

Users are advised to update to version R10.04 and apply the patch software CS_e12787. For assistance, contact your local Yokogawa supporting office.

Added: Feb 9, 2026, 5:21 AM

Updated: Feb 9, 2026, 5:21 AM

Vulnerability Rating

Custom Algorithm

spread

1.4

impact

0.2

exploitability

5.6

remediation

7.7

relevance

2.8

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.4

impact

0.2

exploitability

5.6

remediation

7.7

relevance

2.8

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Yokogawa FAST/TOOLS Open Redirect Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Yokogawa FAST/TOOLS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating