Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-agj4-erh6-b3ex
Summary
A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation.



This product does not
properly encode URLs. An attacker could tamper with web pages or execute
malicious scripts.



The
affected products and versions are as follows: FAST/TOOLS (Packages: RVSVRN, UNSVRN, HMIWEB, FTEES, HMIMOB) R9.01 to
R10.04
Aliases
0
alias CVE-2025-66606
Fixed_packages
Affected_packages
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-66606
reference_id
reference_type
scores
0
value 0.00083
scoring_system epss
scoring_elements 0.24246
published_at 2026-06-11T12:55:00Z
1
value 0.00083
scoring_system epss
scoring_elements 0.24441
published_at 2026-06-12T12:55:00Z
2
value 0.00083
scoring_system epss
scoring_elements 0.24453
published_at 2026-06-13T12:55:00Z
3
value 0.00083
scoring_system epss
scoring_elements 0.24436
published_at 2026-06-14T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-66606
1
reference_url https://web-material3.yokogawa.com/1/39206/files/YSAR-26-0001-E.pdf
reference_id YSAR-26-0001-E.pdf
reference_type
scores
0
value 2.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:A/VC:L/VI:N/VA:N/SC:L/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-09T19:02:46Z/
url https://web-material3.yokogawa.com/1/39206/files/YSAR-26-0001-E.pdf
Weaknesses
0
cwe_id 86
name Improper Neutralization of Invalid Characters in Identifiers in Web Pages
description The product does not neutralize or incorrectly neutralizes invalid characters or byte sequences in the middle of tag names, URI schemes, and other identifiers.
Exploits
Severity_range_score2.1 - 2.1
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-agj4-erh6-b3ex