VYPR

Mirth Connect

by NextGen Healthcare

CVEs (2)

  • CVE-2023-43208KEVOct 26, 2023
    risk 0.29cvss epss 0.83

    NextGen Healthcare Mirth Connect before version 4.4.1 is vulnerable to unauthenticated remote code execution. Note that this vulnerability is caused by the incomplete patch of CVE-2023-37679.

  • CVE-2023-37679Aug 3, 2023
    risk 0.10cvss epss 0.97

    A remote command execution (RCE) vulnerability in NextGen Mirth Connect v4.3.0 allows attackers to execute arbitrary commands on the hosting server.