5.5 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
44.9%
A vulnerability in all versions of Nim-lang allows unauthenticated attackers to write files to arbitrary directories via a crafted zip file with dot-slash characters included in the name of the crafted file.
github.com/nim-lang/zip/issues/54