Product security

Edwards Lifesciences recognizes that as software continues to become more integrated in products, cybersecurity is a critical element in reducing risk across the total product lifecycle. Cybersecurity threats are evolving and not only do they have the potential to impact the confidentiality, integrity and availability of a product, but also the clinical effectiveness. As such, we continuously monitor new threats and evaluate them to ensure the safety, security and trustworthiness of our products. In support of these efforts, Edwards maintains a dedicated product security team to help evaluate and implement security controls and manage risks across our product lines.

As appropriate, we will be posting cybersecurity bulletins related to vulnerabilities and their impact to Edwards products. For any additional questions or comments related to product security at Edwards, please contact your service representative and/or the product security team directly at product_security@edwards.com.

Bulletins

9/18/19

“Urgent/11” Cybersecurity Bulletin

Multiple security vulnerabilities in the IPnet TCP/IP Stack, implemented across various operating systems were recently disclosed publicly by security researchers at Armis. These vulnerabilities, referred to as “Urgent/11”, can be utilized for remote code execution and allow an attacker to potentially compromise an entire system without user interaction.  A Common Vulnerability Scoring System (CVSS) v3 score of 9.8 out of 10 has been assigned to Urgent/11.

At this time, Edwards' devices on market are not impacted by the Urgent/11 vulnerabilities. Edwards will continue to monitor the situation and provide customers with updates, as appropriate. Additional details on the vulnerability can be found on the US Department of Homeland Security Cyber Infrastructure website – https://www.us-cert.gov/ics/advisories/icsma-19-274-01.

For additional clarification and concerns, please contact a service representative and/or product security team directly at product_security@edwards.com, utilizing PGP to encrypt your message. The product_security@edwards.com PGP public key can be found by ID: 0x49F9C9DB at PGP public servers https://www.keyserver.pgp.com.

Please update your browser

Please update to a current version of your preferred browser, this site will perform effectively on the following:

Unable to update your browser?

If you are on a computer, that is maintained by an admin and you cannot install a new browser, ask your admin about it. If you can't change your browser because of compatibility issues, think about installing a second browser for browsing and keep this old one for compatibility