The latest update to the Mirth Connect tool by NextGen revealed a code execution vulnerability (CVE-2023-43208) in software versions pre-dating 4.4.1. According to the National Institute of Standards and Technology (NIST) analysis, the tool, aimed at healthcare, primarily has versions dating back to 2015/16 at risk, specifically those versions on the internet. NextGen recommended an upgrade to the latest software version to combat the vulnerability.
AppSuite-PDF, PDF Editor Operators Exploited 26 Code-Signing Certificates to Fake Legitimacy
Analysis reveals that the developers behind the AppSuite-PDF and PDF Editor campaigns have abused at least 26 distinct code-signing certificates over the past seven years
