CVE-2023-43208

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Oct 26, 2023
Updated: Jan 31, 2024

Summary

CVE-2023-43208 is a vulnerability found in NextGen Healthcare Mirth Connect before version 4.4.1. It allows for unauthenticated remote code execution and is related to the incomplete patch of CVE-2023-37679. This vulnerability has a risk score of 79 and a base severity rating of CRITICAL according to the National Vulnerability Database (NVD). The affected products include various versions of sQfybV, tQWKn7, tQWKn6, and others. The potential danger it poses to an organization is high, with a high impact on both integrity and confidentiality. To remediate this vulnerability, organizations should update their NextGen Healthcare Mirth Connect software to version 4.4.1 or higher. The exploitability score for this vulnerability is 3.9, indicating that it can be exploited relatively easily over a network connection without requiring any privileges or user interaction.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-43208 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options