Vulnerability in Philips Intellivue Mx40 Patient Worn Monitor

CVE-2017-9658

Certain 802.11 network management messages have been determined to invoke wireless access point blacklisting security defenses when not required, which can necessitate intervention by hospital staff to reset the device and reestablish a ne…

EPSS: 0.003 (56.0th percentile) — read the EPSS interpretation.

Affected products

Philips Intellivue Mx40 Patient Worn Monitor — versions IntelliVue MX40 Patient Worn Monitor (WLAN only), all versions prior to Version B.06.18

Weakness classification (CWE)

CWE-755 — Improper Handling of Exceptional Conditions

References

www.usa.philips.com/healthcare/about/customer-support/product-security (x_refsource_CONFIRM)
100813 (vdb-entry, x_refsource_BID)
ics-cert.us-cert.gov/advisories/ICSMA-17-255-01 (x_refsource_MISC)