Skip to main content

Public advisory of scammers impersonating CSA and the SPF

Stay vigilant. Read the public advisory

Cyber Security Agency of Singapore
  1. Home
  2. Alerts & Advisories
  3. Alerts
  4. Active Exploitation of Critical Vulnerability in NextGen Healthcare Mirth Connect
Alerts

Active Exploitation of Critical Vulnerability in NextGen Healthcare Mirth Connect

28 May 2024

There have been reports of active exploitation of a critical vulnerability (CVE-2023-43208) affecting NextGen Healthcare Mirth Connect. The vulnerability has a Common Vulnerability Scoring System (CVSSv3.1) score of 9.8 out of 10.

Successful exploitation of the vulnerability could allow an unauthenticated attacker to perform remote code execution.

The vulnerability affects NextGen Healthcare Mirth Connect versions prior to 4.4.1.

Users and administrators of affected product versions are advised to update to the latest version immediately.

More information is available here:

https://nvd.nist.gov/vuln/detail/CVE-2023-43208

https://www.securityweek.com/cisa-warns-of-attacks-exploiting-nextgen-healthcare-mirth-connect-flaw/

Back to top