ByteOS Network

NVD Vulnerability Details :

CVE-2024-13026

Received

Source-5cdcf916-2b10-4ec8-bfc1-d054821e439e

Published At-17 Jan, 2025 | 20:15

Updated At-17 Jan, 2025 | 20:15

A vulnerability exists in Algo Edge up to 2.1.1 - a previously used (legacy) component of navify® Algorithm Suite. The vulnerability impacts the authentication mechanism of this component and could allow an attacker with adjacent access to the laboratory network and the Algo Edge system to craft valid authentication tokens and access the component. Other components of navify® Algorithm Suite are not affected.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	4.0	6.1	MEDIUM	CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:N/R:A/V:D/RE:L/U:Clear

Type: Secondary

Version: 4.0

Base score: 6.1

Base severity: MEDIUM

Vector:

CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:N/R:A/V:D/RE:L/U:Clear

Weaknesses

CWE ID	Type	Source
CWE-326	Secondary	5cdcf916-2b10-4ec8-bfc1-d054821e439e

CWE ID: CWE-326

Type: Secondary

Source: 5cdcf916-2b10-4ec8-bfc1-d054821e439e

References

Hyperlink	Source	Resource
https://diagnostics.roche.com/content/dam/diagnostics/Blueprint/en/pdf/Algo%20Edge%20-%20Authentication%20Vulnerability%20-%20Product%20Security%20Advisory.pdf	5cdcf916-2b10-4ec8-bfc1-d054821e439e	N/A

Hyperlink: https://diagnostics.roche.com/content/dam/diagnostics/Blueprint/en/pdf/Algo%20Edge%20-%20Authentication%20Vulnerability%20-%20Product%20Security%20Advisory.pdf

Source: 5cdcf916-2b10-4ec8-bfc1-d054821e439e

Resource: N/A

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History