A vulnerability exists in Algo Edge up to 2.1.1 - a previously used (legacy) component of navify® Algorithm Suite. The vulnerability impacts the authentication mechanism of this component and could allow an attacker with adjacent access to the laboratory network and the Algo Edge system to craft valid authentication tokens and access the component. Other components of navify® Algorithm Suite are not affected.
CVE ID: CVE-2024-13026
CVSS Base Severity: MEDIUM
CVSS Base Score: 6.1
Vendor: Roche Diagnostics
Product: Algorithm Suite
EPSS Score: 0.04% (probability of being exploited)
EPSS Percentile: 11.66% (scored less or equal to compared to others)
EPSS Date: 2025-02-15 (when was this score calculated)