Explore Your Local Site

Looks like you've landed on our   site. Let's take you home:    

Please note that the content and products on the    site might not be available in your region.

 

Choose the language:

  Homepage
Continue on the current website:  

 

Information Technology Advisory

Bayer focuses on vigilance, innovation, transparency, and data integrity in its efforts to protect your data.

       

 

December 20, 2023


Re: NextGen Mirth Connect to Calantic™ Digital Solutions


Dear Valued Customer


Bayer is aware of the recently disclosed vulnerabilities in Mirth® Connect, Connect, a third-party, open-source healthcare data integration platform. These vulnerabilities impact NextGen Mirth Connect 4.4.0 and prior versions. The vulnerabilities allow attackers to remotely execute arbitrary commands on the hosting server. (CVE-2023-37679 and CVE-2023-43208).


The Bayer Radiology Cybersecurity team has conducted risk and vulnerability assessments to determine potential impact to the safety and effectiveness of Bayer Radiology products. For the Calantic Product we have identified a potential safety risk related to this vulnerability. The probability of a critical harm is remote, but Bayer strongly encourages customers to implement the remediation outlined in this letter. Bayer is proactively reaching out to customers through this communication.


If your organization is using Calantic Edge 1.1 or older:     
 

  • Mirth Connect is a third-party component that is installed with the Calantic Edge software.
  • The vulnerability affects the Mirth Administrative Portal. This portal is not used during normal workflow.
  • To mitigate this vulnerability, if you have not already done so, we recommend that customers verify that ports 8081 and 8443 are blocked via Windows Firewall, to prevent remote launching of the Administrative Portal
  • A future update to the Calantic Edge software with the resolution to this vulnerability provided by NextGen is currently being developed and will be released in the future.


If you have any questions or concerns, we want to hear from you. Please contact our Bayer support team at 1-800-633-7237, press 1, press 2 for Radimetrics and Calantic Service or by email at solutionssupport@bayer.com


Sincerely,      

Scott Bristol      
Head, Digital Solutions Group Cybersecurity.    

 

LinkedIn LinkedIn

© 2022, 2023 Bayer

The descriptions, claims and visuals for all non-Bayer owned applications originate and are obtained from the application providers, or excerpted from publicly available information. Bayer is providing this content for your information, but does not own and control such content.

BAYER, the Bayer Cross, Radimetrics and Calantic are trademarks owned by Bayer and/or registered in the U.S. Other trademarks and company names mentioned herein are properties of their respective owners.

This is intended to provide information for healthcare professionals and other relevant decision makers in the US. Not all offerings are available in all markets. For availability specific to your country please contact your local Bayer representative. These materials are exclusively for professional use.

 

Consult the operating instructions of a product for its intended use, characteristics and performance, contraindications, name of the manufacturer or its authorized representative and other essential information.

 

You are encouraged to report adverse events; reporting information can be found on https://www.bayer.com/en/pharma/report-side-effect

Any individuals depicted in this website are actors and not actual health care providers or patients. All patient data is fictitious. Images are an artistic representation for illustrative purposes only.

 

Bayer U.S. | Digital Solutions, 100 Bayer Blvd., Whippany, NJ 07981-0915

 

Last Updated: September 2023

© 2022, 2023, 2024 Bayer

The descriptions, claims and visuals for all non-Bayer owned applications originate and are obtained from the application providers, or excerpted from publicly available information. Bayer is providing this content for your information, but does not own and control such content.

BAYER, the Bayer Cross, Radimetrics and Calantic are trademarks owned by Bayer and/or registered in the U.S. Other trademarks and company names mentioned herein are properties of their respective owners.

This is intended to provide information for healthcare professionals and other relevant decision makers in the US. Not all offerings are available in all markets. For availability specific to your country please contact your local Bayer representative. These materials are exclusively for professional use.

 

Consult the operating instructions of a product for its intended use, characteristics and performance, contraindications, name of the manufacturer or its authorized representative and other essential information.

 

You are encouraged to report adverse events; reporting information can be found on https://www.bayer.com/en/pharma/report-side-effect

Any individuals depicted in this website are actors and not actual health care providers or patients. All patient data is fictitious. Images are an artistic representation for illustrative purposes only.

 

Bayer U.S. | Digital Solutions, 100 Bayer Blvd., Whippany, NJ 07981-0915

 

Last Updated: October 2024

Bayer Logo
  • United States