Yokogawa FAST/TOOLS and CI Server
Summary
CISA has released an alert regarding a vulnerability in Yokogawa FAST/TOOLS (versions >=R9.01 | <=R10.04) and Collaborative Information Server (CI Server) (versions >=R1.01 | <=R1.04). Successful exploitation of this flaw, identified as CVE-2026-11833, could lead to the cleartext transmission and disclosure of CI Server setting information. This vulnerability has a CVSS v3 score of 7.5 and affects critical infrastructure sectors worldwide.
IFF Assessment
This article details a vulnerability in critical industrial control systems that requires immediate attention and patching from defenders to prevent potential exploitation.
Severity
A CVSS v3 score of 7.5 (High) is assigned because the vulnerability allows for the cleartext transmission of sensitive information, which an attacker could exploit for further attacks. This could lead to a significant impact on confidentiality and potentially integrity or availability, especially in critical infrastructure environments.
Defender Context
Defenders operating Yokogawa FAST/TOOLS and CI Server in critical infrastructure sectors (Critical Manufacturing, Energy, Food and Agriculture) must prioritize updating affected systems. The disclosure of CI Server settings could provide attackers with crucial reconnaissance for more sophisticated attacks against operational technology (OT) environments. Organizations should follow Yokogawa's recommendations to update FAST/TOOLS to R10.04 with SP4 and CI Server to R1.05 to mitigate this risk.