CVE-2020-15694 – In Nim 1.2.4, the standard library httpClient fails to properly validate the server respon …

Vuln ID: CVE-2020-15694

Published:  2020-08-14  19:15:12Z

Description: In Nim 1.2.4, the standard library httpClient fails to properly validate the server response. For example, httpClient.get().contentLength() does not raise any error if a malicious server provides a negative Content-Length.

Source: NVD.NIST.GOV