NextGen Healthcare Mirth Connect before version 4.4.1 is vulnerable to unauthenticated remote code execution. Note that this vulnerability is caused by the incomplete patch of CVE-2023-37679.
CVSS
9.8
CRITICAL
Published
Oct 26, 2023
Loading
Vendor coverage
Track published CVEs, severity trends, and remediation context for nextgen products.
Search results
Showing 1-2 of 2 vulnerabilities.
NextGen Healthcare Mirth Connect before version 4.4.1 is vulnerable to unauthenticated remote code execution. Note that this vulnerability is caused by the incomplete patch of CVE-2023-37679.
CVSS
9.8
CRITICAL
Published
Oct 26, 2023
A remote command execution (RCE) vulnerability in NextGen Mirth Connect v4.3.0 allows attackers to execute arbitrary commands on the hosting server.
CVSS
9.8
CRITICAL
Published
Aug 3, 2023