CVE-2021-29495

Nim is a statically typed compiled systems programming language. In Nim standard library before 1.4.2, httpClient SSL/TLS certificate verification was disabled by default. Users can upgrade to version 1.4.2 to receive a patch or, as a workaround, set "verifyMode = CVerifyPeer" as documented.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:nim-lang:nim:*:*:*:*:*:*:*:*

Information

Published : 2021-05-07 09:15

Updated : 2021-05-14 09:32


NVD link : CVE-2021-29495

Mitre link : CVE-2021-29495


JSON object : View

CWE
CWE-295

Improper Certificate Validation

Advertisement

dedicated server usa

Products Affected

nim-lang

  • nim