navify Monitoring API input validation

CVE Details

Basic Information

Title	navify Monitoring API input validation
Type	cve
Published	2025-08-05T16:53:05.316Z
Modified	2025-08-05T16:53:05.316Z

Product Information

Vendor	Roche Diagnostics
Product	navify Monitoring
Version	0

CVSS Information

Base Score	7.1 (HIGH)
Attack Vector	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:Y/R:U/V:D/RE:M/U:Green

AI Analysis

AI Description	A vulnerability in Roche Diagnostics’ navify Monitoring allows attackers to manipulate input data, potentially causing a denial of service (DoS) by degrading server performance. This issue does not impact data confidentiality or integrity.
AI Severity	High
AI Vendor	Roche Diagnostics
AI Product	navify Monitoring
AI Version	before 1.08.00

Affected Products

Roche Diagnostics navify Monitoring 0

Additional Information

CWE List	CWE-20
Source	Roche

Description

Improper Input Validation vulnerability in Roche Diagnostics navify Monitoring allows an attacker to manipulate input data, which may lead to a denial of service (DoS) due to negatively impacting the server’s performance. This vulnerability has no impact on data confidentiality or integrity.
This issue affects navify Monitoring before 1.08.00.

References

https://preview-owp.roche.com/content/dam/diagnostics/Blueprint/en/pdf/navify%20Monitoring%20-%20API%20Input%20Validation%20Vulnerability%20-%20Product%20Security%20Advisory.pdf

View Full CVE Details