csaf_opensuse - opensuse-su-2022:10101-1

opensuse-su-2022:10101-1

Vulnerability from csaf_opensuse

Published

2022-08-27 12:33

Modified

2022-08-27 12:33

Summary

Security update for nim

Notes

Title of the patch

Security update for nim

Description of the patch

This update for nim fixes the following issues: Includes upstream security fixes for: * (boo#1175333, CVE-2020-15693) httpClient is vulnerable to a CR-LF injection * (boo#1175334, CVE-2020-15692) mishandle of argument to browsers.openDefaultBrowser * (boo#1175332, CVE-2020-15694) httpClient.get().contentLength() fails to properly validate the server response * (boo#1192712, CVE-2021-41259) null byte accepted in getContent function, leading to URI validation bypass * (boo#1185948, CVE-2021-29495) stdlib httpClient does not validate peer certificates by default * (boo#1185085, CVE-2021-21374) Improper verification of the SSL/TLS certificate * (boo#1185084, CVE-2021-21373) 'nimble refresh' falls back to a non-TLS URL in case of error * (boo#1185083, CVE-2021-21372) doCmd can be leveraged to execute arbitrary commands * (boo#1181705, CVE-2020-15690) Standard library asyncftpclient lacks a check for newline character Update to 1.6.6 * standard library use consistent styles for variable names so it can be used in projects which force a consistent style with --styleCheck:usages option. * ARC/ORC are now considerably faster at method dispatching, bringing its performance back on the level of the refc memory management. * Full changelog: https://nim-lang.org/blog/2022/05/05/version-166-released.html - Previous updates and changelogs: * 1.6.4: https://nim-lang.org/blog/2022/02/08/version-164-released.html * 1.6.2: https://nim-lang.org/blog/2021/12/17/version-162-released.html * 1.6.0: https://nim-lang.org/blog/2021/10/19/version-160-released.html * 1.4.8: https://nim-lang.org/blog/2021/05/25/version-148-released.html * 1.4.6: https://nim-lang.org/blog/2021/04/15/versions-146-and-1212-released.html * 1.4.4: https://nim-lang.org/blog/2021/02/23/versions-144-and-1210-released.html * 1.4.2: https://nim-lang.org/blog/2020/12/01/version-142-released.html * 1.4.0: https://nim-lang.org/blog/2020/10/16/version-140-released.html update to 1.2.16 * oids: switch from PRNG to random module * nimc.rst: fix table markup * nimRawSetjmp: support Windows * correctly enable chronos * bigints are not supposed to work on 1.2.x * disable nimpy * misc bugfixes * fixes a 'mixin' statement handling regression [backport:1.2

Patchnames

openSUSE-2022-10101

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for nim",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for nim fixes the following issues:\n\nIncludes upstream security fixes for:\n\n* (boo#1175333, CVE-2020-15693) httpClient is vulnerable to a \n  CR-LF injection\n* (boo#1175334, CVE-2020-15692) mishandle of argument to \n  browsers.openDefaultBrowser\n* (boo#1175332, CVE-2020-15694) httpClient.get().contentLength()\n  fails to properly validate the server response\n* (boo#1192712, CVE-2021-41259) null byte accepted in getContent\n  function, leading to URI validation bypass\n* (boo#1185948, CVE-2021-29495) stdlib httpClient does not\n  validate peer certificates by default\n* (boo#1185085, CVE-2021-21374) Improper verification of the \n  SSL/TLS certificate\n* (boo#1185084, CVE-2021-21373) \u0027nimble refresh\u0027 falls back to a \n  non-TLS URL in case of error\n* (boo#1185083, CVE-2021-21372) doCmd can be leveraged to execute\n  arbitrary commands\n* (boo#1181705, CVE-2020-15690) Standard library asyncftpclient \n  lacks a check for newline character\n\nUpdate to 1.6.6\n\n* standard library use consistent styles for variable names so it\n  can be used in projects which force a consistent style with \n  --styleCheck:usages option. \n* ARC/ORC are now considerably faster at method dispatching, \n  bringing its performance back on the level of the refc memory \n  management.\n* Full changelog:\n  https://nim-lang.org/blog/2022/05/05/version-166-released.html\n- Previous updates and changelogs:\n* 1.6.4: \n  https://nim-lang.org/blog/2022/02/08/version-164-released.html\n* 1.6.2: \n  https://nim-lang.org/blog/2021/12/17/version-162-released.html\n* 1.6.0: \n  https://nim-lang.org/blog/2021/10/19/version-160-released.html\n* 1.4.8: \n  https://nim-lang.org/blog/2021/05/25/version-148-released.html\n* 1.4.6: \n  https://nim-lang.org/blog/2021/04/15/versions-146-and-1212-released.html\n* 1.4.4: \n  https://nim-lang.org/blog/2021/02/23/versions-144-and-1210-released.html\n* 1.4.2: \n  https://nim-lang.org/blog/2020/12/01/version-142-released.html\n* 1.4.0: \n  https://nim-lang.org/blog/2020/10/16/version-140-released.html\n\nupdate to 1.2.16\n\n* oids: switch from PRNG to random module\n* nimc.rst: fix table markup\n* nimRawSetjmp: support Windows\n* correctly enable chronos\n* bigints are not supposed to work on 1.2.x\n* disable nimpy\n* misc bugfixes\n* fixes a \u0027mixin\u0027 statement handling regression [backport:1.2 \n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-2022-10101",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2022_10101-1.json"
      },
      {
        "category": "self",
        "summary": "URL for openSUSE-SU-2022:10101-1",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/SNDISR45BBTIWW5MDTIQOSRHOEV3XUKF/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for openSUSE-SU-2022:10101-1",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/SNDISR45BBTIWW5MDTIQOSRHOEV3XUKF/"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1175332",
        "url": "https://bugzilla.suse.com/1175332"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1175333",
        "url": "https://bugzilla.suse.com/1175333"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1175334",
        "url": "https://bugzilla.suse.com/1175334"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1181705",
        "url": "https://bugzilla.suse.com/1181705"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1185083",
        "url": "https://bugzilla.suse.com/1185083"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1185084",
        "url": "https://bugzilla.suse.com/1185084"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1185085",
        "url": "https://bugzilla.suse.com/1185085"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1185948",
        "url": "https://bugzilla.suse.com/1185948"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1192712",
        "url": "https://bugzilla.suse.com/1192712"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-15690 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-15690/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-15692 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-15692/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-15693 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-15693/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-15694 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-15694/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-21372 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-21372/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-21373 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-21373/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-21374 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-21374/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-29495 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-29495/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-41259 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-41259/"
      }
    ],
    "title": "Security update for nim",
    "tracking": {
      "current_release_date": "2022-08-27T12:33:24Z",
      "generator": {
        "date": "2022-08-27T12:33:24Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2022:10101-1",
      "initial_release_date": "2022-08-27T12:33:24Z",
      "revision_history": [
        {
          "date": "2022-08-27T12:33:24Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nim-1.6.6-bp154.2.3.1.aarch64",
                "product": {
                  "name": "nim-1.6.6-bp154.2.3.1.aarch64",
                  "product_id": "nim-1.6.6-bp154.2.3.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nim-1.6.6-bp154.2.3.1.ppc64le",
                "product": {
                  "name": "nim-1.6.6-bp154.2.3.1.ppc64le",
                  "product_id": "nim-1.6.6-bp154.2.3.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "nim-1.6.6-bp154.2.3.1.x86_64",
                "product": {
                  "name": "nim-1.6.6-bp154.2.3.1.x86_64",
                  "product_id": "nim-1.6.6-bp154.2.3.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Package Hub 15 SP4",
                "product": {
                  "name": "SUSE Package Hub 15 SP4",
                  "product_id": "SUSE Package Hub 15 SP4"
                }
              },
              {
                "category": "product_name",
                "name": "openSUSE Leap 15.4",
                "product": {
                  "name": "openSUSE Leap 15.4",
                  "product_id": "openSUSE Leap 15.4",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:leap:15.4"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nim-1.6.6-bp154.2.3.1.aarch64 as component of SUSE Package Hub 15 SP4",
          "product_id": "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.aarch64"
        },
        "product_reference": "nim-1.6.6-bp154.2.3.1.aarch64",
        "relates_to_product_reference": "SUSE Package Hub 15 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nim-1.6.6-bp154.2.3.1.ppc64le as component of SUSE Package Hub 15 SP4",
          "product_id": "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.ppc64le"
        },
        "product_reference": "nim-1.6.6-bp154.2.3.1.ppc64le",
        "relates_to_product_reference": "SUSE Package Hub 15 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nim-1.6.6-bp154.2.3.1.x86_64 as component of SUSE Package Hub 15 SP4",
          "product_id": "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.x86_64"
        },
        "product_reference": "nim-1.6.6-bp154.2.3.1.x86_64",
        "relates_to_product_reference": "SUSE Package Hub 15 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nim-1.6.6-bp154.2.3.1.aarch64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.aarch64"
        },
        "product_reference": "nim-1.6.6-bp154.2.3.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nim-1.6.6-bp154.2.3.1.ppc64le as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.ppc64le"
        },
        "product_reference": "nim-1.6.6-bp154.2.3.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "nim-1.6.6-bp154.2.3.1.x86_64 as component of openSUSE Leap 15.4",
          "product_id": "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.x86_64"
        },
        "product_reference": "nim-1.6.6-bp154.2.3.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.4"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2020-15690",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-15690"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Nim before 1.2.6, the standard library asyncftpclient lacks a check for whether a message contains a newline character.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.aarch64",
          "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.ppc64le",
          "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.x86_64",
          "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.aarch64",
          "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.ppc64le",
          "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-15690",
          "url": "https://www.suse.com/security/cve/CVE-2020-15690"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1181705 for CVE-2020-15690",
          "url": "https://bugzilla.suse.com/1181705"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.aarch64",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.x86_64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.aarch64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.aarch64",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.x86_64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.aarch64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-08-27T12:33:24Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2020-15690"
    },
    {
      "cve": "CVE-2020-15692",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-15692"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Nim 1.2.4, the standard library browsers mishandles the URL argument to browsers.openDefaultBrowser. This argument can be a local file path that will be opened in the default explorer. An attacker can pass one argument to the underlying open command to execute arbitrary registered system commands.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.aarch64",
          "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.ppc64le",
          "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.x86_64",
          "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.aarch64",
          "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.ppc64le",
          "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-15692",
          "url": "https://www.suse.com/security/cve/CVE-2020-15692"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1175334 for CVE-2020-15692",
          "url": "https://bugzilla.suse.com/1175334"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.aarch64",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.x86_64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.aarch64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.aarch64",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.x86_64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.aarch64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-08-27T12:33:24Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2020-15692"
    },
    {
      "cve": "CVE-2020-15693",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-15693"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Nim 1.2.4, the standard library httpClient is vulnerable to a CR-LF injection in the target URL. An injection is possible if the attacker controls any part of the URL provided in a call (such as httpClient.get or httpClient.post), the User-Agent header value, or custom HTTP header names or values.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.aarch64",
          "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.ppc64le",
          "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.x86_64",
          "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.aarch64",
          "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.ppc64le",
          "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-15693",
          "url": "https://www.suse.com/security/cve/CVE-2020-15693"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1175333 for CVE-2020-15693",
          "url": "https://bugzilla.suse.com/1175333"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.aarch64",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.x86_64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.aarch64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.aarch64",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.x86_64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.aarch64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-08-27T12:33:24Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-15693"
    },
    {
      "cve": "CVE-2020-15694",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-15694"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Nim 1.2.4, the standard library httpClient fails to properly validate the server response. For example, httpClient.get().contentLength() does not raise any error if a malicious server provides a negative Content-Length.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.aarch64",
          "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.ppc64le",
          "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.x86_64",
          "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.aarch64",
          "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.ppc64le",
          "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-15694",
          "url": "https://www.suse.com/security/cve/CVE-2020-15694"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1175332 for CVE-2020-15694",
          "url": "https://bugzilla.suse.com/1175332"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.aarch64",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.x86_64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.aarch64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.aarch64",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.x86_64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.aarch64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-08-27T12:33:24Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2020-15694"
    },
    {
      "cve": "CVE-2021-21372",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-21372"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Nimble is a package manager for the Nim programming language. In Nim release version before versions 1.2.10 and 1.4.4, Nimble doCmd is used in different places and can be leveraged to execute arbitrary commands. An attacker can craft a malicious entry in the packages.json package list to trigger code execution.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.aarch64",
          "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.ppc64le",
          "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.x86_64",
          "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.aarch64",
          "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.ppc64le",
          "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-21372",
          "url": "https://www.suse.com/security/cve/CVE-2021-21372"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185083 for CVE-2021-21372",
          "url": "https://bugzilla.suse.com/1185083"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.aarch64",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.x86_64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.aarch64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.aarch64",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.x86_64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.aarch64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-08-27T12:33:24Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-21372"
    },
    {
      "cve": "CVE-2021-21373",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-21373"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Nimble is a package manager for the Nim programming language. In Nim release versions before versions 1.2.10 and 1.4.4, \"nimble refresh\" fetches a list of Nimble packages over HTTPS by default. In case of error it falls back to a non-TLS URL http://irclogs.nim-lang.org/packages.json. An attacker able to perform MitM can deliver a modified package list containing malicious software packages. If the packages are installed and used the attack escalates to untrusted code execution.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.aarch64",
          "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.ppc64le",
          "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.x86_64",
          "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.aarch64",
          "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.ppc64le",
          "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-21373",
          "url": "https://www.suse.com/security/cve/CVE-2021-21373"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185084 for CVE-2021-21373",
          "url": "https://bugzilla.suse.com/1185084"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.aarch64",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.x86_64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.aarch64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.aarch64",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.x86_64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.aarch64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-08-27T12:33:24Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-21373"
    },
    {
      "cve": "CVE-2021-21374",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-21374"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Nimble is a package manager for the Nim programming language. In Nim release versions before versions 1.2.10 and 1.4.4, \"nimble refresh\" fetches a list of Nimble packages over HTTPS without full verification of the SSL/TLS certificate due to the default setting of httpClient. An attacker able to perform MitM can deliver a modified package list containing malicious software packages. If the packages are installed and used the attack escalates to untrusted code execution.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.aarch64",
          "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.ppc64le",
          "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.x86_64",
          "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.aarch64",
          "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.ppc64le",
          "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-21374",
          "url": "https://www.suse.com/security/cve/CVE-2021-21374"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185085 for CVE-2021-21374",
          "url": "https://bugzilla.suse.com/1185085"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.aarch64",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.x86_64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.aarch64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.aarch64",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.x86_64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.aarch64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-08-27T12:33:24Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-21374"
    },
    {
      "cve": "CVE-2021-29495",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-29495"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Nim is a statically typed compiled systems programming language. In Nim standard library before 1.4.2, httpClient SSL/TLS certificate verification was disabled by default. Users can upgrade to version 1.4.2 to receive a patch or, as a workaround, set \"verifyMode = CVerifyPeer\" as documented.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.aarch64",
          "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.ppc64le",
          "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.x86_64",
          "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.aarch64",
          "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.ppc64le",
          "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-29495",
          "url": "https://www.suse.com/security/cve/CVE-2021-29495"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185948 for CVE-2021-29495",
          "url": "https://bugzilla.suse.com/1185948"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.aarch64",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.x86_64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.aarch64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.aarch64",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.x86_64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.aarch64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-08-27T12:33:24Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-29495"
    },
    {
      "cve": "CVE-2021-41259",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-41259"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. Notes: None.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.aarch64",
          "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.ppc64le",
          "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.x86_64",
          "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.aarch64",
          "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.ppc64le",
          "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-41259",
          "url": "https://www.suse.com/security/cve/CVE-2021-41259"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1192712 for CVE-2021-41259",
          "url": "https://bugzilla.suse.com/1192712"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.aarch64",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.x86_64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.aarch64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.6,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.aarch64",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "SUSE Package Hub 15 SP4:nim-1.6.6-bp154.2.3.1.x86_64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.aarch64",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.ppc64le",
            "openSUSE Leap 15.4:nim-1.6.6-bp154.2.3.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-08-27T12:33:24Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-41259"
    }
  ]
}

CVE-2021-29495 (GCVE-0-2021-29495)

Vulnerability from cvelistv5

Published

2021-05-07 15:15

Modified

2024-08-03 22:11

Severity ?

5.9 (Medium) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

CWE

CWE-295 - Improper Certificate Validation

Summary

Nim is a statically typed compiled systems programming language. In Nim standard library before 1.4.2, httpClient SSL/TLS certificate verification was disabled by default. Users can upgrade to version 1.4.2 to receive a patch or, as a workaround, set "verifyMode = CVerifyPeer" as documented.

References

►

URL

Tags

https://github.com/nim-lang/security/security/advisories/GHSA-9vqv-2jj9-7mqr

x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	nim-lang	security	Version: < 1.4.2

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T22:11:05.438Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://github.com/nim-lang/security/security/advisories/GHSA-9vqv-2jj9-7mqr"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "security",
          "vendor": "nim-lang",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c 1.4.2"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Nim is a statically typed compiled systems programming language. In Nim standard library before 1.4.2, httpClient SSL/TLS certificate verification was disabled by default. Users can upgrade to version 1.4.2 to receive a patch or, as a workaround, set \"verifyMode = CVerifyPeer\" as documented."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-295",
              "description": "CWE-295 Improper Certificate Validation",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-05-07T15:15:10",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/nim-lang/security/security/advisories/GHSA-9vqv-2jj9-7mqr"
        }
      ],
      "source": {
        "advisory": "GHSA-9vqv-2jj9-7mqr",
        "discovery": "UNKNOWN"
      },
      "title": "Nim stdlib httpClient does not validate peer certificates by default",
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security-advisories@github.com",
          "ID": "CVE-2021-29495",
          "STATE": "PUBLIC",
          "TITLE": "Nim stdlib httpClient does not validate peer certificates by default"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "security",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "\u003c 1.4.2"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "nim-lang"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Nim is a statically typed compiled systems programming language. In Nim standard library before 1.4.2, httpClient SSL/TLS certificate verification was disabled by default. Users can upgrade to version 1.4.2 to receive a patch or, as a workaround, set \"verifyMode = CVerifyPeer\" as documented."
            }
          ]
        },
        "impact": {
          "cvss": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-295 Improper Certificate Validation"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://github.com/nim-lang/security/security/advisories/GHSA-9vqv-2jj9-7mqr",
              "refsource": "CONFIRM",
              "url": "https://github.com/nim-lang/security/security/advisories/GHSA-9vqv-2jj9-7mqr"
            }
          ]
        },
        "source": {
          "advisory": "GHSA-9vqv-2jj9-7mqr",
          "discovery": "UNKNOWN"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2021-29495",
    "datePublished": "2021-05-07T15:15:10",
    "dateReserved": "2021-03-30T00:00:00",
    "dateUpdated": "2024-08-03T22:11:05.438Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-21374 (GCVE-0-2021-21374)

Vulnerability from cvelistv5

Published

2021-03-26 21:25

Modified

2024-08-03 18:09

Severity ?

8.1 (High) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:H/A:L

CWE

CWE-348 - Use of Less Trusted Source
CWE-599 - Missing Validation of OpenSSL Certificate
CWE-349 - Acceptance of Extraneous Untrusted Data With Trusted Data

Summary

Nimble is a package manager for the Nim programming language. In Nim release versions before versions 1.2.10 and 1.4.4, "nimble refresh" fetches a list of Nimble packages over HTTPS without full verification of the SSL/TLS certificate due to the default setting of httpClient. An attacker able to perform MitM can deliver a modified package list containing malicious software packages. If the packages are installed and used the attack escalates to untrusted code execution.

References

►

URL

Tags

	https://consensys.net/diligence/vulnerabilities/nim-insecure-ssl-tls-defaults-remote-code-execution/	x_refsource_MISC
	https://github.com/nim-lang/nimble/blob/master/changelog.markdown#0130	x_refsource_MISC
	https://github.com/nim-lang/security/security/advisories/GHSA-c2wm-v66h-xhxx	x_refsource_CONFIRM
	https://github.com/nim-lang/Nim/pull/16940	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	nim-lang	security	Version: < 1.2.10 Version: >= 1.4.0, < 1.4.4

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T18:09:15.923Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://consensys.net/diligence/vulnerabilities/nim-insecure-ssl-tls-defaults-remote-code-execution/"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/nim-lang/nimble/blob/master/changelog.markdown#0130"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://github.com/nim-lang/security/security/advisories/GHSA-c2wm-v66h-xhxx"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/nim-lang/Nim/pull/16940"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "security",
          "vendor": "nim-lang",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c 1.2.10"
            },
            {
              "status": "affected",
              "version": "\u003e= 1.4.0, \u003c 1.4.4"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Nimble is a package manager for the Nim programming language. In Nim release versions before versions 1.2.10 and 1.4.4, \"nimble refresh\" fetches a list of Nimble packages over HTTPS without full verification of the SSL/TLS certificate due to the default setting of httpClient. An attacker able to perform MitM can deliver a modified package list containing malicious software packages. If the packages are installed and used the attack escalates to untrusted code execution."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:H/A:L",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-348",
              "description": "CWE-348 Use of Less Trusted Source",
              "lang": "en",
              "type": "CWE"
            }
          ]
        },
        {
          "descriptions": [
            {
              "cweId": "CWE-599",
              "description": "CWE-599: Missing Validation of OpenSSL Certificate",
              "lang": "en",
              "type": "CWE"
            }
          ]
        },
        {
          "descriptions": [
            {
              "cweId": "CWE-349",
              "description": "CWE-349: Acceptance of Extraneous Untrusted Data With Trusted Data",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-03-26T21:25:14",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://consensys.net/diligence/vulnerabilities/nim-insecure-ssl-tls-defaults-remote-code-execution/"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/nim-lang/nimble/blob/master/changelog.markdown#0130"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/nim-lang/security/security/advisories/GHSA-c2wm-v66h-xhxx"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/nim-lang/Nim/pull/16940"
        }
      ],
      "source": {
        "advisory": "GHSA-c2wm-v66h-xhxx",
        "discovery": "UNKNOWN"
      },
      "title": "Nimble fails to validate certificates due to insecure httpClient defaults",
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security-advisories@github.com",
          "ID": "CVE-2021-21374",
          "STATE": "PUBLIC",
          "TITLE": "Nimble fails to validate certificates due to insecure httpClient defaults"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "security",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "\u003c 1.2.10"
                          },
                          {
                            "version_value": "\u003e= 1.4.0, \u003c 1.4.4"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "nim-lang"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Nimble is a package manager for the Nim programming language. In Nim release versions before versions 1.2.10 and 1.4.4, \"nimble refresh\" fetches a list of Nimble packages over HTTPS without full verification of the SSL/TLS certificate due to the default setting of httpClient. An attacker able to perform MitM can deliver a modified package list containing malicious software packages. If the packages are installed and used the attack escalates to untrusted code execution."
            }
          ]
        },
        "impact": {
          "cvss": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:H/A:L",
            "version": "3.1"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-348 Use of Less Trusted Source"
                }
              ]
            },
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-599: Missing Validation of OpenSSL Certificate"
                }
              ]
            },
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-349: Acceptance of Extraneous Untrusted Data With Trusted Data"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://consensys.net/diligence/vulnerabilities/nim-insecure-ssl-tls-defaults-remote-code-execution/",
              "refsource": "MISC",
              "url": "https://consensys.net/diligence/vulnerabilities/nim-insecure-ssl-tls-defaults-remote-code-execution/"
            },
            {
              "name": "https://github.com/nim-lang/nimble/blob/master/changelog.markdown#0130",
              "refsource": "MISC",
              "url": "https://github.com/nim-lang/nimble/blob/master/changelog.markdown#0130"
            },
            {
              "name": "https://github.com/nim-lang/security/security/advisories/GHSA-c2wm-v66h-xhxx",
              "refsource": "CONFIRM",
              "url": "https://github.com/nim-lang/security/security/advisories/GHSA-c2wm-v66h-xhxx"
            },
            {
              "name": "https://github.com/nim-lang/Nim/pull/16940",
              "refsource": "MISC",
              "url": "https://github.com/nim-lang/Nim/pull/16940"
            }
          ]
        },
        "source": {
          "advisory": "GHSA-c2wm-v66h-xhxx",
          "discovery": "UNKNOWN"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2021-21374",
    "datePublished": "2021-03-26T21:25:14",
    "dateReserved": "2020-12-22T00:00:00",
    "dateUpdated": "2024-08-03T18:09:15.923Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2020-15693 (GCVE-0-2020-15693)

Vulnerability from cvelistv5

Published

2020-08-14 18:47

Modified

2024-08-04 13:22

Severity ?

CWE

Summary

In Nim 1.2.4, the standard library httpClient is vulnerable to a CR-LF injection in the target URL. An injection is possible if the attacker controls any part of the URL provided in a call (such as httpClient.get or httpClient.post), the User-Agent header value, or custom HTTP header names or values.

References

►

URL

Tags

	https://github.com/nim-lang/Nim/blob/dc5a40f3f39c6ea672e6dc6aca7f8118a69dda99/lib/pure/httpclient.nim#L1023	x_refsource_MISC
	https://nim-lang.org/blog/2020/07/30/versions-126-and-108-released.html	x_refsource_CONFIRM
	http://www.openwall.com/lists/oss-security/2021/02/04/2	mailing-list, x_refsource_MLIST
	https://consensys.net/diligence/vulnerabilities/nim-httpclient-header-crlf-injection/	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T13:22:30.673Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/nim-lang/Nim/blob/dc5a40f3f39c6ea672e6dc6aca7f8118a69dda99/lib/pure/httpclient.nim#L1023"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://nim-lang.org/blog/2020/07/30/versions-126-and-108-released.html"
          },
          {
            "name": "[oss-security] 20210204 [CVE-2020-15693, CVE-2020-15694] Nim - stdlib Httpclient - Header Crlf Injection \u0026 Server Response Validation",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2021/02/04/2"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://consensys.net/diligence/vulnerabilities/nim-httpclient-header-crlf-injection/"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2020-07-30T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "In Nim 1.2.4, the standard library httpClient is vulnerable to a CR-LF injection in the target URL. An injection is possible if the attacker controls any part of the URL provided in a call (such as httpClient.get or httpClient.post), the User-Agent header value, or custom HTTP header names or values."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-02-04T15:29:54",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/nim-lang/Nim/blob/dc5a40f3f39c6ea672e6dc6aca7f8118a69dda99/lib/pure/httpclient.nim#L1023"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://nim-lang.org/blog/2020/07/30/versions-126-and-108-released.html"
        },
        {
          "name": "[oss-security] 20210204 [CVE-2020-15693, CVE-2020-15694] Nim - stdlib Httpclient - Header Crlf Injection \u0026 Server Response Validation",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2021/02/04/2"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://consensys.net/diligence/vulnerabilities/nim-httpclient-header-crlf-injection/"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2020-15693",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In Nim 1.2.4, the standard library httpClient is vulnerable to a CR-LF injection in the target URL. An injection is possible if the attacker controls any part of the URL provided in a call (such as httpClient.get or httpClient.post), the User-Agent header value, or custom HTTP header names or values."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://github.com/nim-lang/Nim/blob/dc5a40f3f39c6ea672e6dc6aca7f8118a69dda99/lib/pure/httpclient.nim#L1023",
              "refsource": "MISC",
              "url": "https://github.com/nim-lang/Nim/blob/dc5a40f3f39c6ea672e6dc6aca7f8118a69dda99/lib/pure/httpclient.nim#L1023"
            },
            {
              "name": "https://nim-lang.org/blog/2020/07/30/versions-126-and-108-released.html",
              "refsource": "CONFIRM",
              "url": "https://nim-lang.org/blog/2020/07/30/versions-126-and-108-released.html"
            },
            {
              "name": "[oss-security] 20210204 [CVE-2020-15693, CVE-2020-15694] Nim - stdlib Httpclient - Header Crlf Injection \u0026 Server Response Validation",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2021/02/04/2"
            },
            {
              "name": "https://consensys.net/diligence/vulnerabilities/nim-httpclient-header-crlf-injection/",
              "refsource": "MISC",
              "url": "https://consensys.net/diligence/vulnerabilities/nim-httpclient-header-crlf-injection/"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2020-15693",
    "datePublished": "2020-08-14T18:47:01",
    "dateReserved": "2020-07-13T00:00:00",
    "dateUpdated": "2024-08-04T13:22:30.673Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2020-15694 (GCVE-0-2020-15694)

Vulnerability from cvelistv5

Published

2020-08-14 18:48

Modified

2024-08-04 13:22

Severity ?

CWE

Summary

In Nim 1.2.4, the standard library httpClient fails to properly validate the server response. For example, httpClient.get().contentLength() does not raise any error if a malicious server provides a negative Content-Length.

References

►

URL

Tags

	https://github.com/nim-lang/Nim/blob/dc5a40f3f39c6ea672e6dc6aca7f8118a69dda99/lib/pure/httpclient.nim#L241	x_refsource_MISC
	https://nim-lang.org/blog/2020/07/30/versions-126-and-108-released.html	x_refsource_CONFIRM
	http://www.openwall.com/lists/oss-security/2021/02/04/2	mailing-list, x_refsource_MLIST
	https://consensys.net/diligence/vulnerabilities/nim-httpclient-header-crlf-injection/	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T13:22:30.793Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/nim-lang/Nim/blob/dc5a40f3f39c6ea672e6dc6aca7f8118a69dda99/lib/pure/httpclient.nim#L241"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://nim-lang.org/blog/2020/07/30/versions-126-and-108-released.html"
          },
          {
            "name": "[oss-security] 20210204 [CVE-2020-15693, CVE-2020-15694] Nim - stdlib Httpclient - Header Crlf Injection \u0026 Server Response Validation",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2021/02/04/2"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://consensys.net/diligence/vulnerabilities/nim-httpclient-header-crlf-injection/"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2020-07-30T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "In Nim 1.2.4, the standard library httpClient fails to properly validate the server response. For example, httpClient.get().contentLength() does not raise any error if a malicious server provides a negative Content-Length."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-02-04T15:27:51",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/nim-lang/Nim/blob/dc5a40f3f39c6ea672e6dc6aca7f8118a69dda99/lib/pure/httpclient.nim#L241"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://nim-lang.org/blog/2020/07/30/versions-126-and-108-released.html"
        },
        {
          "name": "[oss-security] 20210204 [CVE-2020-15693, CVE-2020-15694] Nim - stdlib Httpclient - Header Crlf Injection \u0026 Server Response Validation",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2021/02/04/2"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://consensys.net/diligence/vulnerabilities/nim-httpclient-header-crlf-injection/"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2020-15694",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In Nim 1.2.4, the standard library httpClient fails to properly validate the server response. For example, httpClient.get().contentLength() does not raise any error if a malicious server provides a negative Content-Length."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://github.com/nim-lang/Nim/blob/dc5a40f3f39c6ea672e6dc6aca7f8118a69dda99/lib/pure/httpclient.nim#L241",
              "refsource": "MISC",
              "url": "https://github.com/nim-lang/Nim/blob/dc5a40f3f39c6ea672e6dc6aca7f8118a69dda99/lib/pure/httpclient.nim#L241"
            },
            {
              "name": "https://nim-lang.org/blog/2020/07/30/versions-126-and-108-released.html",
              "refsource": "CONFIRM",
              "url": "https://nim-lang.org/blog/2020/07/30/versions-126-and-108-released.html"
            },
            {
              "name": "[oss-security] 20210204 [CVE-2020-15693, CVE-2020-15694] Nim - stdlib Httpclient - Header Crlf Injection \u0026 Server Response Validation",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2021/02/04/2"
            },
            {
              "name": "https://consensys.net/diligence/vulnerabilities/nim-httpclient-header-crlf-injection/",
              "refsource": "MISC",
              "url": "https://consensys.net/diligence/vulnerabilities/nim-httpclient-header-crlf-injection/"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2020-15694",
    "datePublished": "2020-08-14T18:48:45",
    "dateReserved": "2020-07-13T00:00:00",
    "dateUpdated": "2024-08-04T13:22:30.793Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-21372 (GCVE-0-2021-21372)

Vulnerability from cvelistv5

Published

2021-03-26 21:20

Modified

2024-08-03 18:09

Severity ?

8.3 (High) - CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

CWE

CWE-20 - Improper Input Validation
CWE-74 - Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

Summary

Nimble is a package manager for the Nim programming language. In Nim release version before versions 1.2.10 and 1.4.4, Nimble doCmd is used in different places and can be leveraged to execute arbitrary commands. An attacker can craft a malicious entry in the packages.json package list to trigger code execution.

References

►

URL

Tags

	https://consensys.net/diligence/vulnerabilities/nim-insecure-ssl-tls-defaults-remote-code-execution/	x_refsource_MISC
	https://github.com/nim-lang/security/security/advisories/GHSA-rg9f-w24h-962p	x_refsource_CONFIRM
	https://github.com/nim-lang/nimble/blob/master/changelog.markdown#0130	x_refsource_MISC
	https://github.com/nim-lang/nimble/commit/7bd63d504a4157b8ed61a51af47fb086ee818c37	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	nim-lang	security	Version: < 1.2.10 Version: >= 1.4.0, < 1.4.4

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T18:09:15.920Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://consensys.net/diligence/vulnerabilities/nim-insecure-ssl-tls-defaults-remote-code-execution/"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://github.com/nim-lang/security/security/advisories/GHSA-rg9f-w24h-962p"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/nim-lang/nimble/blob/master/changelog.markdown#0130"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/nim-lang/nimble/commit/7bd63d504a4157b8ed61a51af47fb086ee818c37"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "security",
          "vendor": "nim-lang",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c 1.2.10"
            },
            {
              "status": "affected",
              "version": "\u003e= 1.4.0, \u003c 1.4.4"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Nimble is a package manager for the Nim programming language. In Nim release version before versions 1.2.10 and 1.4.4, Nimble doCmd is used in different places and can be leveraged to execute arbitrary commands. An attacker can craft a malicious entry in the packages.json package list to trigger code execution."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-20",
              "description": "CWE-20 Improper Input Validation",
              "lang": "en",
              "type": "CWE"
            }
          ]
        },
        {
          "descriptions": [
            {
              "cweId": "CWE-74",
              "description": "CWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component (\u0027Injection\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-03-26T21:20:15",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://consensys.net/diligence/vulnerabilities/nim-insecure-ssl-tls-defaults-remote-code-execution/"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/nim-lang/security/security/advisories/GHSA-rg9f-w24h-962p"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/nim-lang/nimble/blob/master/changelog.markdown#0130"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/nim-lang/nimble/commit/7bd63d504a4157b8ed61a51af47fb086ee818c37"
        }
      ],
      "source": {
        "advisory": "GHSA-rg9f-w24h-962p",
        "discovery": "UNKNOWN"
      },
      "title": "Nimble arbitrary code execution for specially crafted package metadata",
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security-advisories@github.com",
          "ID": "CVE-2021-21372",
          "STATE": "PUBLIC",
          "TITLE": "Nimble arbitrary code execution for specially crafted package metadata"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "security",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "\u003c 1.2.10"
                          },
                          {
                            "version_value": "\u003e= 1.4.0, \u003c 1.4.4"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "nim-lang"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Nimble is a package manager for the Nim programming language. In Nim release version before versions 1.2.10 and 1.4.4, Nimble doCmd is used in different places and can be leveraged to execute arbitrary commands. An attacker can craft a malicious entry in the packages.json package list to trigger code execution."
            }
          ]
        },
        "impact": {
          "cvss": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
            "version": "3.1"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-20 Improper Input Validation"
                }
              ]
            },
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component (\u0027Injection\u0027)"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://consensys.net/diligence/vulnerabilities/nim-insecure-ssl-tls-defaults-remote-code-execution/",
              "refsource": "MISC",
              "url": "https://consensys.net/diligence/vulnerabilities/nim-insecure-ssl-tls-defaults-remote-code-execution/"
            },
            {
              "name": "https://github.com/nim-lang/security/security/advisories/GHSA-rg9f-w24h-962p",
              "refsource": "CONFIRM",
              "url": "https://github.com/nim-lang/security/security/advisories/GHSA-rg9f-w24h-962p"
            },
            {
              "name": "https://github.com/nim-lang/nimble/blob/master/changelog.markdown#0130",
              "refsource": "MISC",
              "url": "https://github.com/nim-lang/nimble/blob/master/changelog.markdown#0130"
            },
            {
              "name": "https://github.com/nim-lang/nimble/commit/7bd63d504a4157b8ed61a51af47fb086ee818c37",
              "refsource": "MISC",
              "url": "https://github.com/nim-lang/nimble/commit/7bd63d504a4157b8ed61a51af47fb086ee818c37"
            }
          ]
        },
        "source": {
          "advisory": "GHSA-rg9f-w24h-962p",
          "discovery": "UNKNOWN"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2021-21372",
    "datePublished": "2021-03-26T21:20:15",
    "dateReserved": "2020-12-22T00:00:00",
    "dateUpdated": "2024-08-03T18:09:15.920Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2020-15692 (GCVE-0-2020-15692)

Vulnerability from cvelistv5

Published

2020-08-14 18:45

Modified

2024-08-04 13:22

Severity ?

CWE

Summary

In Nim 1.2.4, the standard library browsers mishandles the URL argument to browsers.openDefaultBrowser. This argument can be a local file path that will be opened in the default explorer. An attacker can pass one argument to the underlying open command to execute arbitrary registered system commands.

References

►

URL

Tags

	https://github.com/nim-lang/Nim/blob/dc5a40f3f39c6ea672e6dc6aca7f8118a69dda99/lib/pure/browsers.nim#L48	x_refsource_MISC
	https://nim-lang.org/blog/2020/07/30/versions-126-and-108-released.html	x_refsource_CONFIRM
	http://www.openwall.com/lists/oss-security/2021/02/04/1	mailing-list, x_refsource_MLIST
	https://consensys.net/diligence/vulnerabilities/nim-browsers-argument-injection/	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T13:22:30.730Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/nim-lang/Nim/blob/dc5a40f3f39c6ea672e6dc6aca7f8118a69dda99/lib/pure/browsers.nim#L48"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://nim-lang.org/blog/2020/07/30/versions-126-and-108-released.html"
          },
          {
            "name": "[oss-security] 20210204 [CVE-2020-15692] Nim - stdlib Browsers - `open` Argument Injection",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2021/02/04/1"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://consensys.net/diligence/vulnerabilities/nim-browsers-argument-injection/"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2020-07-30T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "In Nim 1.2.4, the standard library browsers mishandles the URL argument to browsers.openDefaultBrowser. This argument can be a local file path that will be opened in the default explorer. An attacker can pass one argument to the underlying open command to execute arbitrary registered system commands."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-02-04T15:25:32",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/nim-lang/Nim/blob/dc5a40f3f39c6ea672e6dc6aca7f8118a69dda99/lib/pure/browsers.nim#L48"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://nim-lang.org/blog/2020/07/30/versions-126-and-108-released.html"
        },
        {
          "name": "[oss-security] 20210204 [CVE-2020-15692] Nim - stdlib Browsers - `open` Argument Injection",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2021/02/04/1"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://consensys.net/diligence/vulnerabilities/nim-browsers-argument-injection/"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2020-15692",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In Nim 1.2.4, the standard library browsers mishandles the URL argument to browsers.openDefaultBrowser. This argument can be a local file path that will be opened in the default explorer. An attacker can pass one argument to the underlying open command to execute arbitrary registered system commands."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://github.com/nim-lang/Nim/blob/dc5a40f3f39c6ea672e6dc6aca7f8118a69dda99/lib/pure/browsers.nim#L48",
              "refsource": "MISC",
              "url": "https://github.com/nim-lang/Nim/blob/dc5a40f3f39c6ea672e6dc6aca7f8118a69dda99/lib/pure/browsers.nim#L48"
            },
            {
              "name": "https://nim-lang.org/blog/2020/07/30/versions-126-and-108-released.html",
              "refsource": "CONFIRM",
              "url": "https://nim-lang.org/blog/2020/07/30/versions-126-and-108-released.html"
            },
            {
              "name": "[oss-security] 20210204 [CVE-2020-15692] Nim - stdlib Browsers - `open` Argument Injection",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2021/02/04/1"
            },
            {
              "name": "https://consensys.net/diligence/vulnerabilities/nim-browsers-argument-injection/",
              "refsource": "MISC",
              "url": "https://consensys.net/diligence/vulnerabilities/nim-browsers-argument-injection/"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2020-15692",
    "datePublished": "2020-08-14T18:45:35",
    "dateReserved": "2020-07-13T00:00:00",
    "dateUpdated": "2024-08-04T13:22:30.730Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-21373 (GCVE-0-2021-21373)

Vulnerability from cvelistv5

Published

2021-03-26 21:25

Modified

2024-08-03 18:09

Severity ?

7.5 (High) - CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:H/A:L

CWE

CWE-348 - Use of Less Trusted Source

Summary

Nimble is a package manager for the Nim programming language. In Nim release versions before versions 1.2.10 and 1.4.4, "nimble refresh" fetches a list of Nimble packages over HTTPS by default. In case of error it falls back to a non-TLS URL http://irclogs.nim-lang.org/packages.json. An attacker able to perform MitM can deliver a modified package list containing malicious software packages. If the packages are installed and used the attack escalates to untrusted code execution.

References

►

URL

Tags

	https://consensys.net/diligence/vulnerabilities/nim-insecure-ssl-tls-defaults-remote-code-execution/	x_refsource_MISC
	https://github.com/nim-lang/nimble/blob/master/changelog.markdown#0130	x_refsource_MISC
	https://github.com/nim-lang/security/security/advisories/GHSA-8w52-r35x-rgp8	x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	nim-lang	security	Version: < 1.2.10 Version: >= 1.4.0, < 1.4.4

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T18:09:15.923Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://consensys.net/diligence/vulnerabilities/nim-insecure-ssl-tls-defaults-remote-code-execution/"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/nim-lang/nimble/blob/master/changelog.markdown#0130"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://github.com/nim-lang/security/security/advisories/GHSA-8w52-r35x-rgp8"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "security",
          "vendor": "nim-lang",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c 1.2.10"
            },
            {
              "status": "affected",
              "version": "\u003e= 1.4.0, \u003c 1.4.4"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Nimble is a package manager for the Nim programming language. In Nim release versions before versions 1.2.10 and 1.4.4, \"nimble refresh\" fetches a list of Nimble packages over HTTPS by default. In case of error it falls back to a non-TLS URL http://irclogs.nim-lang.org/packages.json. An attacker able to perform MitM can deliver a modified package list containing malicious software packages. If the packages are installed and used the attack escalates to untrusted code execution."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:H/A:L",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-348",
              "description": "CWE-348 Use of Less Trusted Source",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-03-26T21:25:19",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://consensys.net/diligence/vulnerabilities/nim-insecure-ssl-tls-defaults-remote-code-execution/"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/nim-lang/nimble/blob/master/changelog.markdown#0130"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/nim-lang/security/security/advisories/GHSA-8w52-r35x-rgp8"
        }
      ],
      "source": {
        "advisory": "GHSA-8w52-r35x-rgp8",
        "discovery": "UNKNOWN"
      },
      "title": "Nimble falls back to insecure http url when fetching packages",
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security-advisories@github.com",
          "ID": "CVE-2021-21373",
          "STATE": "PUBLIC",
          "TITLE": "Nimble falls back to insecure http url when fetching packages"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "security",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "\u003c 1.2.10"
                          },
                          {
                            "version_value": "\u003e= 1.4.0, \u003c 1.4.4"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "nim-lang"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Nimble is a package manager for the Nim programming language. In Nim release versions before versions 1.2.10 and 1.4.4, \"nimble refresh\" fetches a list of Nimble packages over HTTPS by default. In case of error it falls back to a non-TLS URL http://irclogs.nim-lang.org/packages.json. An attacker able to perform MitM can deliver a modified package list containing malicious software packages. If the packages are installed and used the attack escalates to untrusted code execution."
            }
          ]
        },
        "impact": {
          "cvss": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:H/A:L",
            "version": "3.1"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-348 Use of Less Trusted Source"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://consensys.net/diligence/vulnerabilities/nim-insecure-ssl-tls-defaults-remote-code-execution/",
              "refsource": "MISC",
              "url": "https://consensys.net/diligence/vulnerabilities/nim-insecure-ssl-tls-defaults-remote-code-execution/"
            },
            {
              "name": "https://github.com/nim-lang/nimble/blob/master/changelog.markdown#0130",
              "refsource": "MISC",
              "url": "https://github.com/nim-lang/nimble/blob/master/changelog.markdown#0130"
            },
            {
              "name": "https://github.com/nim-lang/security/security/advisories/GHSA-8w52-r35x-rgp8",
              "refsource": "CONFIRM",
              "url": "https://github.com/nim-lang/security/security/advisories/GHSA-8w52-r35x-rgp8"
            }
          ]
        },
        "source": {
          "advisory": "GHSA-8w52-r35x-rgp8",
          "discovery": "UNKNOWN"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2021-21373",
    "datePublished": "2021-03-26T21:25:19",
    "dateReserved": "2020-12-22T00:00:00",
    "dateUpdated": "2024-08-03T18:09:15.923Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2020-15690 (GCVE-0-2020-15690)

Vulnerability from cvelistv5

Published

2021-01-30 05:12

Modified

2024-08-04 13:22

Severity ?

CWE

Summary

In Nim before 1.2.6, the standard library asyncftpclient lacks a check for whether a message contains a newline character.

References

►

URL

Tags

	https://github.com/nim-lang/Nim/blob/dc5a40f3f39c6ea672e6dc6aca7f8118a69dda99/lib/pure/asyncftpclient.nim#L145	x_refsource_MISC
	https://github.com/nim-lang/Nim/compare/v1.2.4...v1.2.6	x_refsource_CONFIRM
	https://consensys.net/diligence/vulnerabilities/nim-asyncftpd-crlf-injection/	x_refsource_MISC
	https://github.com/tintinweb/pub/tree/master/pocs/cve-2020-15690	x_refsource_MISC
	http://www.openwall.com/lists/oss-security/2021/02/04/3	mailing-list, x_refsource_MLIST

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T13:22:30.685Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/nim-lang/Nim/blob/dc5a40f3f39c6ea672e6dc6aca7f8118a69dda99/lib/pure/asyncftpclient.nim#L145"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://github.com/nim-lang/Nim/compare/v1.2.4...v1.2.6"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://consensys.net/diligence/vulnerabilities/nim-asyncftpd-crlf-injection/"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/tintinweb/pub/tree/master/pocs/cve-2020-15690"
          },
          {
            "name": "[oss-security] 20210204 [CVE-2020-15690] Nim - stdlib asyncftpd - Crlf Injection",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2021/02/04/3"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In Nim before 1.2.6, the standard library asyncftpclient lacks a check for whether a message contains a newline character."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-02-04T19:06:15",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/nim-lang/Nim/blob/dc5a40f3f39c6ea672e6dc6aca7f8118a69dda99/lib/pure/asyncftpclient.nim#L145"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/nim-lang/Nim/compare/v1.2.4...v1.2.6"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://consensys.net/diligence/vulnerabilities/nim-asyncftpd-crlf-injection/"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/tintinweb/pub/tree/master/pocs/cve-2020-15690"
        },
        {
          "name": "[oss-security] 20210204 [CVE-2020-15690] Nim - stdlib asyncftpd - Crlf Injection",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2021/02/04/3"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2020-15690",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In Nim before 1.2.6, the standard library asyncftpclient lacks a check for whether a message contains a newline character."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://github.com/nim-lang/Nim/blob/dc5a40f3f39c6ea672e6dc6aca7f8118a69dda99/lib/pure/asyncftpclient.nim#L145",
              "refsource": "MISC",
              "url": "https://github.com/nim-lang/Nim/blob/dc5a40f3f39c6ea672e6dc6aca7f8118a69dda99/lib/pure/asyncftpclient.nim#L145"
            },
            {
              "name": "https://github.com/nim-lang/Nim/compare/v1.2.4...v1.2.6",
              "refsource": "CONFIRM",
              "url": "https://github.com/nim-lang/Nim/compare/v1.2.4...v1.2.6"
            },
            {
              "name": "https://consensys.net/diligence/vulnerabilities/nim-asyncftpd-crlf-injection/",
              "refsource": "MISC",
              "url": "https://consensys.net/diligence/vulnerabilities/nim-asyncftpd-crlf-injection/"
            },
            {
              "name": "https://github.com/tintinweb/pub/tree/master/pocs/cve-2020-15690",
              "refsource": "MISC",
              "url": "https://github.com/tintinweb/pub/tree/master/pocs/cve-2020-15690"
            },
            {
              "name": "[oss-security] 20210204 [CVE-2020-15690] Nim - stdlib asyncftpd - Crlf Injection",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2021/02/04/3"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2020-15690",
    "datePublished": "2021-01-30T05:12:58",
    "dateReserved": "2020-07-13T00:00:00",
    "dateUpdated": "2024-08-04T13:22:30.685Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-41259 (GCVE-0-2021-41259)

Vulnerability from cvelistv5

DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. Notes: None.

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "cna": {
      "providerMetadata": {
        "dateUpdated": "2023-04-07T00:00:00",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "rejectedReasons": [
        {
          "lang": "en",
          "value": "DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. Notes: None."
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2021-41259",
    "dateRejected": "2023-04-07T00:00:00",
    "dateReserved": "2021-09-15T00:00:00",
    "dateUpdated": "2023-04-07T00:00:00",
    "state": "REJECTED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.0"
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

opensuse-su-2022:10101-1

Vulnerability from csaf_opensuse

CVE-2021-29495 (GCVE-0-2021-29495)

Vulnerability from cvelistv5

CVE-2021-21374 (GCVE-0-2021-21374)

Vulnerability from cvelistv5

CVE-2020-15693 (GCVE-0-2020-15693)

Vulnerability from cvelistv5

CVE-2020-15694 (GCVE-0-2020-15694)

Vulnerability from cvelistv5

CVE-2021-21372 (GCVE-0-2021-21372)

Vulnerability from cvelistv5

CVE-2020-15692 (GCVE-0-2020-15692)

Vulnerability from cvelistv5

CVE-2021-21373 (GCVE-0-2021-21373)

Vulnerability from cvelistv5

CVE-2020-15690 (GCVE-0-2020-15690)

Vulnerability from cvelistv5

CVE-2021-41259 (GCVE-0-2021-41259)

Vulnerability from cvelistv5

Tags

Sightings

Nomenclature