Mirth Connect

mirth_connect

Vendor: Nextgen • 2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-43208 1Nextgen 1Mirth Connect Oct 31, 2025 Oct 26, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 NextGen Healthcare Mirth Connect before version 4.4.1 is vulnerable to unauthenticated remote code execution. Note that this vulnerability is caused by the incomplete patch of CVE-2023-37679.
CVE-2023-37679 1Nextgen 1Mirth Connect Nov 21, 2024 Aug 3, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 A remote command execution (RCE) vulnerability in NextGen Mirth Connect v4.3.0 allows attackers to execute arbitrary commands on the hosting server.