Critical Flaw in NextGen’s Mirth Connect Could Expose Healthcare Data

An unauthenticated remote code execution vulnerability has been found in Mirth Connect, a data integration platform from NextGen HealthCare. Users are advised to update to the latest version (4.4.1) to fix the flaw. The issue (CVE-2023-43208) is a patch bypass for a previous critical vulnerability, potentially allowing hackers to gain control of vulnerable systems.