Vulnerabilities > Weechat > Weechat > 3.2.1

DATE CVE VULNERABILITY TITLE RISK
2024-11-10 CVE-2024-46613 Integer Overflow or Wraparound vulnerability in Weechat
WeeChat before 4.4.2 has an integer overflow and resultant buffer overflow at core/core-string.c when there are more than two billion items in a list.
network
low complexity
weechat CWE-190
critical
 9.8
9.8
2022-04-02 CVE-2022-28352 Improper Certificate Validation vulnerability in Weechat
WeeChat (aka Wee Enhanced Environment for Chat) 3.2 to 3.4 before 3.4.1 does not properly verify the TLS certificate of the server, after certain GnuTLS options are changed, which allows man-in-the-middle attackers to spoof a TLS chat server via an arbitrary certificate.
network
high complexity
weechat CWE-295
4.8
4.8