Windows Defender identifying Mirth Connect Administrator Launcher v1.4.1 as being vulnerable under CVE-2023-43208 #6216
Unanswered
pduncliffe
asked this question in
Q&A
Replies: 1 comment 9 replies
-
It is probably showing up now because this was just discovered last week it seems: https://nvd.nist.gov/vuln/detail/CVE-2023-43208 "NextGen Healthcare Mirth Connect before version 4.4.1 is vulnerable to unauthenticated remote code execution. Note that this vulnerability is caused by the incomplete patch of CVE-2023-37679." |
Beta Was this translation helpful? Give feedback.
9 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
It appears Windows Defender is falsely identifying Mirth Connect Administrator Launcher v1.4.1 as being vulnerable under CVE-2023-43208. Has anyone else dealt with this or reported to Microsoft? It appears to have started after [https://learn.microsoft.com/en-us/defender-vulnerability-management/fixed-reported-inaccuracies] was posted.
![image](https://private-user-images.githubusercontent.com/171677948/336404104-54190d83-8545-4e2b-83ec-853c7a122e2e.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmF3LmdpdGh1YnVzZXJjb250ZW50LmNvbSIsImtleSI6ImtleTUiLCJleHAiOjE3MTk5OTQ2MzQsIm5iZiI6MTcxOTk5NDMzNCwicGF0aCI6Ii8xNzE2Nzc5NDgvMzM2NDA0MTA0LTU0MTkwZDgzLTg1NDUtNGUyYi04M2VjLTg1M2M3YTEyMmUyZS5wbmc_WC1BbXotQWxnb3JpdGhtPUFXUzQtSE1BQy1TSEEyNTYmWC1BbXotQ3JlZGVudGlhbD1BS0lBVkNPRFlMU0E1M1BRSzRaQSUyRjIwMjQwNzAzJTJGdXMtZWFzdC0xJTJGczMlMkZhd3M0X3JlcXVlc3QmWC1BbXotRGF0ZT0yMDI0MDcwM1QwODEyMTRaJlgtQW16LUV4cGlyZXM9MzAwJlgtQW16LVNpZ25hdHVyZT0zZGRiN2EzY2I5NzJkYjkyYjczNzhkZGQ2ZTA0MTE2NGVlYTc5ZThjNGFlODVmYzYwMTJmMDk1Nzc2NDA3NzE4JlgtQW16LVNpZ25lZEhlYWRlcnM9aG9zdCZhY3Rvcl9pZD0wJmtleV9pZD0wJnJlcG9faWQ9MCJ9.WUZ4Y9bAdQAZIgvedFkAxirboeEp2v2CNZPJUHDXeBw)
Beta Was this translation helpful? Give feedback.
All reactions