Today, CISA announced that it had added two vulnerabilities to their Known Exploited Vulnerabilities (KEV) Catalog, including CVE-2023-43208 for NextGen Healthcare’s Mirth Connect healthcare integration engine. The vulnerability was reported by Horizon3.ai. The team of r00t, Spencer McIntyre, Naveen Sunkavally have published a Metasploit module for the vulnerability.
The Horizon3.ai report notes that:
“CVE-2023-37679 was reported to be fixed in Mirth Connect 4.4.0. In the release notes for 4.4.0, it was reported as only affecting Mirth Connect installs running on Java 8 or below. This caught our attention (why only Java 8?), and we started digging. We found that in fact, all installs of Mirth Connect, regardless of the Java version, were vulnerable. We also found that the patch for CVE-2023-37679 could be bypassed. We subsequently reported a new vulnerability to NextGen, tracked as CVE-2023-43208. The fix for CVE-2023-43208 is in 4.4.1.”
The KEV entry for the vulnerability notes that:
Posts
No comments:
Post a Comment