CVE-2023-43208
CVSS 3.1 Score 9.8 of 10 (high)
Details
Summary
CVE-2023-43208 is a vulnerability found in NextGen Healthcare Mirth Connect before version 4.4.1. It allows for unauthenticated remote code execution and is related to the incomplete patch of CVE-2023-37679. This vulnerability has a risk score of 79 and a base severity rating of CRITICAL according to the National Vulnerability Database (NVD). The affected products include various versions of sQfybV, tQWKn7, tQWKn6, and others. The potential danger it poses to an organization is high, with a high impact on both integrity and confidentiality. To remediate this vulnerability, organizations should update their NextGen Healthcare Mirth Connect software to version 4.4.1 or higher. The exploitability score for this vulnerability is 3.9, indicating that it can be exploited relatively easily over a network connection without requiring any privileges or user interaction.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Advisories, Assessments, and Mitigations
Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future
- Gain complete coverage of your cyber, third party, and physical attack surface
- Proactively mitigate threats before they turn into costly attacks
- Make fast, effective, data-driven decisions