Security News > 2024 > May > NextGen Healthcare Mirth Connect Under Attack - CISA Issues Urgent Warning
2024-05-21 07:13
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a security flaw impacting NextGen Healthcare Mirth Connect to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The flaw, tracked as CVE-2023-43208 (CVSS score: N/A), concerns a case of unauthenticated remote code execution arising from an incomplete
News URL
https://thehackernews.com/2024/05/nextgen-healthcare-mirth-connect-under.html
Related news
- CISA says GitLab account takeover bug is actively exploited in attacks (source)
- Ransomware attacks impact 20% of sensitive data in healthcare orgs (source)
- CISA warns of Windows bug exploited in ransomware attacks (source)
- Uncle Sam ends financial support to orgs hurt by Change Healthcare attack (source)
- Qilin: We knew our Synnovis attack would cause a healthcare crisis at London hospitals (source)
- Change Healthcare lists the medical data stolen in ransomware attack (source)
Related Vulnerability
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-26 | CVE-2023-43208 | Unspecified vulnerability in Nextgen Mirth Connect NextGen Healthcare Mirth Connect before version 4.4.1 is vulnerable to unauthenticated remote code execution. | 9.8 |