Nextgen: community verdicts
2 notable / known-exploited Nextgen CVEs the community has triaged.
ⓘ Not an exhaustive list: we focus on the findings that matter (exploited / notable). For every Nextgen CVE, see NVD ↗.
- CVE-2023-43208CRIT 9.8KEVEPSS 83%
NextGen Healthcare Mirth Connect before version 4.4.1 is vulnerable to unauthenticated remote code execution. Note that this vulnerability is caused by the incomplete patch of CVE-2023-37679.
- CVE-2023-37679CRIT 9.8Likely realEPSS 97%
A remote command execution (RCE) vulnerability in NextGen Mirth Connect v4.3.0 allows attackers to execute arbitrary commands on the hosting server.