Skip to main content

Nim

7 CVEs product

Monthly

CVE-2021-29495 HIGH This Week

Nim is a statically typed compiled systems programming language. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Nim
NVD GitHub
CVSS 3.1
7.5
EPSS
0.5%
CVE-2021-21374 HIGH POC PATCH This Week

Nimble is a package manager for the Nim programming language. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Public exploit code available.

RCE Nim
NVD GitHub
CVSS 3.1
8.1
EPSS
1.0%
CVE-2021-21373 MEDIUM POC This Month

Nimble is a package manager for the Nim programming language. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

RCE Nim
NVD GitHub
CVSS 3.1
5.9
EPSS
1.2%
CVE-2021-21372 HIGH POC PATCH This Week

Nimble is a package manager for the Nim programming language. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

RCE Nim
NVD GitHub
CVSS 3.1
8.8
EPSS
3.6%
CVE-2020-15694 HIGH POC PATCH This Week

In Nim 1.2.4, the standard library httpClient fails to properly validate the server response. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Information Disclosure Nim
NVD GitHub
CVSS 3.1
7.5
EPSS
2.3%
CVE-2020-15693 MEDIUM POC PATCH This Month

In Nim 1.2.4, the standard library httpClient is vulnerable to a CR-LF injection in the target URL. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Code Injection Nim
NVD GitHub
CVSS 3.1
6.5
EPSS
2.0%
CVE-2020-15692 CRITICAL POC PATCH Act Now

In Nim 1.2.4, the standard library browsers mishandles the URL argument to browsers.openDefaultBrowser. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Information Disclosure Nim
NVD GitHub
CVSS 3.1
9.8
EPSS
4.2%
EPSS 0% CVSS 7.5
HIGH This Week

Nim is a statically typed compiled systems programming language. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Nim
NVD GitHub
EPSS 1% CVSS 8.1
HIGH POC PATCH This Week

Nimble is a package manager for the Nim programming language. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Public exploit code available.

RCE Nim
NVD GitHub
EPSS 1% CVSS 5.9
MEDIUM POC This Month

Nimble is a package manager for the Nim programming language. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

RCE Nim
NVD GitHub
EPSS 4% CVSS 8.8
HIGH POC PATCH This Week

Nimble is a package manager for the Nim programming language. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

RCE Nim
NVD GitHub
EPSS 2% CVSS 7.5
HIGH POC PATCH This Week

In Nim 1.2.4, the standard library httpClient fails to properly validate the server response. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Information Disclosure Nim
NVD GitHub
EPSS 2% CVSS 6.5
MEDIUM POC PATCH This Month

In Nim 1.2.4, the standard library httpClient is vulnerable to a CR-LF injection in the target URL. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Code Injection Nim
NVD GitHub
EPSS 4% CVSS 9.8
CRITICAL POC PATCH Act Now

In Nim 1.2.4, the standard library browsers mishandles the URL argument to browsers.openDefaultBrowser. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Information Disclosure Nim
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy