CVE-2017-14018

2017-12-0523:00:00

CWE-287

icscert

www.cve.org

AI Score

5.3

Confidence

High

EPSS

0.001

Percentile

31.7%

JSON

An improper authentication issue was discovered in Johnson & Johnson Ethicon Endo-Surgery Generator Gen11, all versions released before November 29, 2017. The security authentication mechanism used between the Ethicon Endo-Surgery Generator Gen11 and single-patient use products can be bypassed, allowing for unauthorized devices to be connected to the generator, which could result in a loss of integrity or availability.

CNA Affected

[
  {
    "product": "Ethicon Endo-Surgery Generator G11",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Ethicon Endo-Surgery Generator G11"
      }
    ]
  }
]

References

www.securityfocus.com/bid/101978

ics-cert.us-cert.gov/advisories/ICSMA-17-332-01