Primary

Context

Roche Algo Edge Authentication Vulnerability in navify Algorithm Suite

Vulnerability

A vulnerability exists in Roche Algo Edge versions prior to 2.1.2, which is a legacy component of the navify Algorithm Suite. This vulnerability affects the authentication mechanism, potentially allowing an attacker with adjacent access to the laboratory network and the Algo Edge system to create valid authentication tokens and access the component. Other components of the navify Algorithm Suite are not impacted.

Impact

Exploitation of this vulnerability could lead to unauthorized access to the Algo Edge component by crafting valid authentication tokens.

Remediation

Roche has released an update for Algo Edge version 2.1.2 and higher. Affected customers have been or are being migrated to a new solution. For more information on the update schedule, contact your local Roche Diagnostics office.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

4.5

remediation

7.7

relevance

0.0

threat

0.0

urgency

0.0

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

4.5

remediation

7.7

relevance

0.0

threat

0.0

urgency

0.0

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Roche Algo Edge Authentication Vulnerability in navify Algorithm Suite

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating