AuthLite is not affected by Yubico CVE-2024-45678 because AuthLite uses only the YubiOTP and HMAC/SHA1 C/R algorithms, which are not impacted in the CVE.

The vulnerability requires physically destroying the key in order to access it with specialized equipment. If you use that YubiKey for other non-AuthLite purposes, such as FIDO, it could be vulnerable to that attack.

If you have any questions please reach out to Support.