Lucene search
K

4 matches found

CVE
CVE
added 2022/04/02 4:36 p.m.114 views

CVE-2022-28352

WeeChat (Wee Enhanced Environment for Chat) versions 3.2–3.4 prior to 3.4.1 are vulnerable: after certain GnuTLS options are changed, WeeChat fails to properly verify the TLS server certificate, enabling MITM attackers to spoof a TLS chat server with an arbitrary certificate. This affects scenari...

4.8CVSS5AI score0.00426EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2011/03/16 10:55 p.m.24 views

CVE-2011-1428

Wee Enhanced Environment for Chat aka WeeChat 0.3.4 and earlier does not properly verify that the server hostname matches the domain name of the subject of an X.509 certificate, which allows man-in-the-middle attackers to spoof an SSL chat server via an arbitrary certificate, related to incorrect...

5.8CVSS6.3AI score0.01082EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2011/03/16 10:55 p.m.20 views

CVE-2011-1428

Wee Enhanced Environment for Chat aka WeeChat 0.3.4 and earlier does not properly verify that the server hostname matches the domain name of the subject of an X.509 certificate, which allows man-in-the-middle attackers to spoof an SSL chat server via an arbitrary certificate, related to incorrect...

5.8CVSS5.9AI score0.01082EPSS
Exploits1References1
Cvelist
Cvelist
added 2011/03/16 10:0 p.m.29 views

CVE-2011-1428

Wee Enhanced Environment for Chat aka WeeChat 0.3.4 and earlier does not properly verify that the server hostname matches the domain name of the subject of an X.509 certificate, which allows man-in-the-middle attackers to spoof an SSL chat server via an arbitrary certificate, related to incorrect...

6.2AI score0.01082EPSS
Exploits1References5
Rows per page
Query Builder