Writeup for CVE-2023-43208: NextGen Mirth Connect Pre-Auth RCE | allinfosecnews.com

Jan. 12, 2024, 2:15 p.m. | Naveen Sunkavally

Security Boulevard securityboulevard.com

Mirth Connect, by NextGen HealthCare, is an open source data integration platform widely used by healthcare companies. Versions prior to 4.4.1 are vulnerable to an unauthenticated remote code execution vulnerability, CVE-2023-43208. If you’re a user of Mirth Connect, you’ll want to upgrade to the latest patch release, 4.4.1, as of this writing.

The post Writeup for CVE-2023-43208: NextGen Mirth Connect Pre-Auth RCE appeared first on Horizon3.ai.

The post Writeup for CVE-2023-43208: NextGen Mirth Connect Pre-Auth RCE appeared first on …

auth blog code code execution companies connect cve cve-2023-43208 data data integration disclosures healthcare integration integration platform latest mirth connect nextgen nextgen healthcare open source patch patch release platform rce red team release remote code remote code execution social engineering source data unauthenticated upgrade vulnerability vulnerable writeup writing

More from securityboulevard.com / Security Boulevard

Product Release: PreVeil 5.0 an hour ago | securityboulevard.com

list page product product release +5

What’s hot at RSAC 2024: 8 SSCS talks you don’t want to miss 3 hours ago | securityboulevard.com

appsec & supply chain security cisos development don +16

It’s 3am… Do You Know Where Your Data Is? 4 hours ago | securityboulevard.com

3am blog data security +2

Zero-Day Nightmare: Palo Alto, Cisco, and MITRE Under Attack 6 hours ago | securityboulevard.com

adaptive security alto asa attack +29

Venafi Launches 90-Day TLS Certificate Renewal Initiative 6 hours ago | securityboulevard.com

application security appsec certificate certificate management +26

Hyperproof and ServiceNow: Elevating Enterprise Control Orchestration with Better Task Management 6 hours ago | securityboulevard.com

blog posts business compliance compliance operations +17

Data Breaches in April 2024 – Infographic 10 hours ago | securityboulevard.com

april big breaches cyber attacks +10

Intel 471 Acquires Cyborg Security to Expand Its Cyber Threat Intelligence Portfolio with Innovative Threat … 11 hours ago | securityboulevard.com

actor advanced april blog +26

CVE-2024-27322 Vulnerability Found in R Programming Language 11 hours ago | securityboulevard.com

advice applications arbitrary code arbitrary code execution +26

Sr. Cloud Security Engineer

@ BLOCKCHAINS | USA - Remote

View on infosec-jobs.com

Network Security (SDWAN: Velocloud) Infrastructure Lead

@ Sopra Steria | Noida, Uttar Pradesh, India

View on infosec-jobs.com

Senior Python Engineer, Cloud Security

@ Darktrace | Cambridge

View on infosec-jobs.com

Senior Security Consultant

@ Nokia | United States

View on infosec-jobs.com

Manager, Threat Operations

@ Ivanti | United States, Remote

View on infosec-jobs.com

Lead Cybersecurity Architect - Threat Modeling | AWS Cloud Security

@ JPMorgan Chase & Co. | Columbus, OH, United States

View on infosec-jobs.com