Home Original page

AVG-2275 - nim - Arch Linux

AVG-2275 log

Package nim
Status Vulnerable
Severity High
Type directory traversal
Affected 1.4.8-1
Fixed Unknown
Current 1.4.8-1 [community]
Ticket Create
Created Tue Aug 10 16:30:29 2021
Issue Severity Remote Type Description
CVE-2020-23171 High Yes Directory traversal 
A vulnerability in all versions of Nim-lang allows unauthenticated attackers to write files to arbitrary directories via a crafted zip file with dot-slash...