Acme.sh

A technical security analysis of a real-world TLS wiretapping incident tied to an ACME client vulnerability (CVE-2023-38198), with PoCs and discussion of how misconfigurations and client flaws can enable certificate interception and issuance, highlighting PKI/regulatory risk considerations.