Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2023-43208

KEV · Ransomware EPSS 94.42% · P100
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2023-43208

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
NextGen Healthcare Mirth Connect before version 4.4.1 is vulnerable to unauthenticated remote code execution. Note that this vulnerability is caused by the incomplete patch of CVE-2023-37679.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
NextGen Mirth Connect 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
NextGen Mirth Connect是美国NextGen公司的一个医疗集成引擎。 NextGen Mirth Connect 4.4.1之前版本存在安全漏洞,该漏洞源于容易受到未经身份验证的远程代码执行攻击。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Shenlong Deep Dive — AI Deep Analysis

10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.

Read summary Full analysis (login)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2023-43208

#POC DescriptionSource LinkShenlong Link
1Nonehttps://github.com/K3ysTr0K3R/CVE-2023-43208-EXPLOITPOC Details
2Nonehttps://github.com/jakabakos/CVE-2023-43208-mirth-connect-rce-pocPOC Details
3Nonehttps://github.com/J4F9S5D2Q7/CVE-2023-43208-MIRTHCONNECTPOC Details
4Use java.net.InetAddress for detectionhttps://github.com/Avento/CVE-2023-43208_Detection_PoCPOC Details
5Unauthenticated remote code execution vulnerability in NextGen Healthcare Mirth Connect before version 4.4.1.https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2023/CVE-2023-43208.yamlPOC Details
6CVE-2023-43208: Mirth Connect Pre-Auth RCE PoChttps://github.com/kyakei/CVE-2023-43208POC Details
7PoC for Mirth Connect Remote Code Execution (RCE)https://github.com/Pegasus0xx/CVE-2023-43208POC Details
8A proof-of-concept exploit for CVE-2023-43208, a remote code execution vulnerability in Mirth Connect before version 4.4.1.https://github.com/MKIRAHMET/PoC-2023-43208POC Details
9Unauthenticated RCE exploit for NextGen Mirth Connect (CVE-2023-43208) via XStream deserialization.https://github.com/coreraw/Mirth-Connect-CVE-2023-43208POC Details
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2023-43208

登录查看更多情报信息。

Same Patch Batch · n/a · 2023-10-26 · 26 CVEs total

CVE-2023-458699.0 CRITICALILIAS 安全漏洞
CVE-2018-17559ABUS TVIP 安全漏洞
CVE-2023-46754Obl.ong 安全漏洞
CVE-2023-45868ILIAS 安全漏洞
CVE-2023-45867ILIAS 安全漏洞
CVE-2023-43352CMS Made Simple 安全漏洞
CVE-2023-39726Mintty 安全漏洞
CVE-2023-38328EGroupware 安全漏洞
CVE-2023-33559OcoMon 安全漏洞
CVE-2023-27170Xpand IT Write-back manager 安全漏洞
CVE-2020-17477UCS@school 安全漏洞
CVE-2018-17879ABUS TVIP 安全漏洞
CVE-2018-17878ABUS TVIP 安全漏洞
CVE-2023-46491Nature Easy Soft Network Technology ZenTao 跨站脚本漏洞
CVE-2018-17558ABUS TVIP 安全漏洞
CVE-2018-16739ABUS TVIP 安全漏洞
CVE-2023-46752FRRouting FRR 安全漏洞
CVE-2023-46753FRRouting FRR 安全漏洞
CVE-2023-46449Inventory Management System 安全漏洞
CVE-2023-46450Inventory Management System 跨站脚本漏洞

Showing top 20 of 26 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2023-43208

No comments yet

Leave a comment