US HC3 issues alert on critical PHP vulnerability impacting healthcare sector

The Health Sector Cybersecurity Coordination Center (HC3) in the U.S. has issued an alert about a critical vulnerability in the PHP programming language that affects the healthcare sector. The vulnerability, known as CVE-2024-4577, affects PHP versions running on Windows devices and impacts a large number of servers globally. HC3 recommends updating the PHP installation to the latest version and provides mitigation strategies for unsupported versions.