<< Back
CVE Number Vulnerability Product Severity Date
CVE-2023-43208 NextGen Mirth Connect Remote Code Execution NextGen Mirth Connect Critical 30-05-2024

Technical Information

A pre-auth remote code execution vulnerability in NextGen Mirth Connect due to insecure usage of the Java XStream library for unmarshalling XML payloads.

Patch Release Date: Oct 06, 2023
Further information on this vulnerability is available at: CVE-2023-43208

Affected Software

NextGen Mirth Connect before 4.4.1