Vulnerability Details CVE-2017-14018
An improper authentication issue was discovered in Johnson & Johnson Ethicon Endo-Surgery Generator Gen11, all versions released before November 29, 2017. The security authentication mechanism used between the Ethicon Endo-Surgery Generator Gen11 and single-patient use products can be bypassed, allowing for unauthorized devices to be connected to the generator, which could result in a loss of integrity or availability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 41.4%
CVSS Severity
CVSS v3 Score 4.8
CVSS v2 Score 3.3
References
Products affected by CVE-2017-14018
-
cpe:2.3:h:ethicon:endo-surgery_generator_gen11:-
-
cpe:2.3:o:ethicon:endo-surgery_generator_gen11_firmware:-