NextGen Healthcare Mirth Connect Under Attack CISA Issues Urgent Warning

Citing evidence of active exploitation, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a security hole affecting NextGen Healthcare Mirth Connect to its list of known exploited vulnerabilities (KEV) on Monday.

The vulnerability, identified as CVE-2023-43208 (CVSS score: N/A), pertains to an instance of unapproved remote code execution that results from an insufficient fix for another significant vulnerability, CVE-2023-37679 (CVSS score: 9.8).

The vulnerability was initially made public by in late October 2023. This January, the company posted a proof-of-concept (PoC) exploit along with other technical details.

Healthcare organizations frequently employ Mirth Connect, an open-source data integration platform that enables standardized data interchange between various systems read more NextGen Healthcare Mirth Connect Under Attack CISA Issues Urgent Warning.

Get up to date on the latest cybersecurity news and enhance your knowledge of cybersecurity with our thorough coverage of the dangers, breaches, and solutions.

Leave a Reply

Your email address will not be published. Required fields are marked *