Nextgen Mirth Connect vulnerabilities
2 known vulnerabilities affecting nextgen/mirth_connect.
Total CVEs
2
CISA KEV
1
actively exploited
Public exploits
2
Exploited in wild
2
Severity breakdown
CRITICAL2
Vulnerabilities
Page 1 of 1
CVE-2023-43208P1CRITICALCVSS 9.8KEVPoCRansomwarefixed in 4.4.12023-10-26
CVE-2023-43208 [CRITICAL] CVE-2023-43208: NextGen Healthcare Mirth Connect before version 4.4.1 is vulnerable to unauthenticated remote code e
NextGen Healthcare Mirth Connect before version 4.4.1 is vulnerable to unauthenticated remote code execution. Note that this vulnerability is caused by the incomplete patch of CVE-2023-37679.
nvd
CVE-2023-37679P1CRITICALCVSS 9.8ExploitedPoCRansomwarev4.3.02023-08-03
CVE-2023-37679 [CRITICAL] CWE-77 CVE-2023-37679: A remote command execution (RCE) vulnerability in NextGen Mirth Connect v4.3.0 allows attackers to e
A remote command execution (RCE) vulnerability in NextGen Mirth Connect v4.3.0 allows attackers to execute arbitrary commands on the hosting server.
nvd