Description
Mutt 1.5.19, when linked against (1) OpenSSL (mutt_ssl.c) or (2) GnuTLS (mutt_ssl_gnutls.c), allows connections when only one TLS certificate in the chain is accepted instead of verifying the entire chain, which allows remote attackers to spoof trusted servers via a man-in-the-middle attack.
Remediation
References
Related Vulnerabilities
WordPress Plugin WordPress Shortcodes-Shortcodes Ultimate Cross-Site Scripting (5.0.6)
WordPress Plugin Child Theme Creator by Orbisius Cross-Site Request Forgery (1.5.1)
WordPress Plugin wpCommentTwit Cross-Site Request Forgery (0.5)
WebLogic CVE-2018-3201 Vulnerability (CVE-2018-3201)
Multiple SugarCRM Products Remote Code Execution Vulnerability (CVE-2023-22952)