Chris Egeland

**Name of the Vulnerable Software and Affected Versions** Quassel versions prior to 0.13.1 **Description** The issue is related to the `--require-ssl` parameter, which can cause Quassel to launch without SSL or TLS support if a usable X.509 certificate is not found on the local system. This could allow a remote attacker to access confidential data. **Recommendations** For versions prior to 0.13.1, ensure that a usable X.509 certificate is properly configured on the local system to prevent Quassel from launching without SSL or TLS support. As a temporary workaround, consider disabling the `--require-ssl` parameter until a proper certificate is configured.