CVE-2017-14018

Name of the Vulnerable Software and Affected Versions Johnson & Johnson Ethicon Endo-Surgery Generator Gen11 versions prior to November 29, 2017

Description An issue with improper authentication was found, allowing the security authentication mechanism between the Ethicon Endo-Surgery Generator Gen11 and single-patient use products to be bypassed. This enables unauthorized devices to connect to the generator, potentially resulting in a loss of integrity or availability.

Recommendations For Johnson & Johnson Ethicon Endo-Surgery Generator Gen11 versions prior to November 29, 2017, ensure that only authorized devices are connected to the generator to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.