Yokogawa Electric Corporation Ci Server vulnerabilities
3 known vulnerabilities affecting yokogawa_electric_corporation/ci_server.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2026-11833P3HIGHCVSS 8.2≥ R1.01, ≤ R1.042026-06-23
CVE-2026-11833 [HIGH] CWE-319 CVE-2026-11833: Overview: A vulnerability has been found in FAST/TOOLS and CI Server. The web server may return a r
Overview:
A vulnerability has been found in FAST/TOOLS and CI Server. The web server may return a response containing the CI Server setting information. This information could
be exploited by an attacker for other attacks.
The affected products and versions are as follows:
FAST/TOOLS (Packages: RVSVRN, UNSVRN, HMIWEB, FTEES, HMIMOB) R9.01 to R10.04
nvd
CVE-2024-4105P4MEDIUMCVSS 5.8≥ R1.01.00, ≤ R1.03.002024-06-26
CVE-2024-4105 [MEDIUM] CWE-79 CVE-2024-4105: A vulnerability has been found in FAST/TOOLS and CI Server. The affected product's WEB HMI server's
A vulnerability has been found in FAST/TOOLS and CI Server. The affected product's WEB HMI server's function to process HTTP requests has a security flaw (Reflected XSS) that allows the execution of malicious scripts. Therefore, if a client PC with inadequate security measures accesses a product URL containing a malicious request, the malicious script m
nvd
CVE-2024-4106P4MEDIUMCVSS 5.3≥ R1.01.00, ≤ R1.03.002024-06-26
CVE-2024-4106 [MEDIUM] CWE-258 CVE-2024-4106: A vulnerability has been found in FAST/TOOLS and CI Server. The affected products have built-in acco
A vulnerability has been found in FAST/TOOLS and CI Server. The affected products have built-in accounts with no passwords set. Therefore, if the product is operated without a password set by default, an attacker can break into the affected product.
The affected products and versions are as follows:
FAST/TOOLS (Packages: RVSVRN, UNSVRN, HMIWEB, FTEES,
nvd