Skip to main content

Mirth Connect

2 CVEs product

Monthly

CVE-2023-43208 CRITICAL POC KEV THREAT Emergency

NextGen Healthcare Mirth Connect before version 4.4.1 is vulnerable to unauthenticated remote code execution. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Command Injection Mirth Connect
NVD
CVSS 3.1
9.8
EPSS
82.7%
CVE-2023-37679 CRITICAL POC THREAT Emergency

A remote command execution (RCE) vulnerability in NextGen Mirth Connect v4.3.0 allows attackers to execute arbitrary commands on the hosting server. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 97.1%.

Command Injection Mirth Connect
NVD VulDB
CVSS 3.1
9.8
EPSS
97.1%
Threat
6.4
EPSS 83% CVSS 9.8
CRITICAL POC KEV THREAT Emergency

NextGen Healthcare Mirth Connect before version 4.4.1 is vulnerable to unauthenticated remote code execution. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Command Injection Mirth Connect
NVD
EPSS 97% 6.4 CVSS 9.8
CRITICAL POC THREAT Emergency

A remote command execution (RCE) vulnerability in NextGen Mirth Connect v4.3.0 allows attackers to execute arbitrary commands on the hosting server. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 97.1%.

Command Injection Mirth Connect
NVD VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy