CVE-2017-14018

CVE-2017-14018

Vendor N/A
Product Ethicon Endo-Surgery Generator G11
Weakness CWE-287 · Improper authentication
Published December 5, 2017
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

An improper authentication issue was discovered in Johnson & Johnson Ethicon Endo-Surgery Generator Gen11, all versions released before November 29, 2017. The security authentication mechanism used between the Ethicon Endo-Surgery Generator Gen11 and single-patient use products can be bypassed, allowing for unauthorized devices to be connected to the generator, which could result in a loss of integrity or availability.

Key dates

02Disclosure timeline

December 5, 2017 CVE published
August 5, 2024 Record updated