CVE-2022-28352
WeeChat (Wee Enhanced Environment for Chat) versions 3.2–3.4 prior to 3.4.1 are vulnerable: after certain GnuTLS options are changed, WeeChat fails to properly verify the TLS server certificate, enabling MITM attackers to spoof a TLS chat server with an arbitrary certificate. This affects scenari...