Coherence Java Extend-Client Accepting any Valid Certificate Without Checking Hostname (Doc ID 2749033.1)

Last updated on FEBRUARY 22, 2024

Applies to:

Oracle Coherence - Version 14.1.1.0.1 and later
Information in this document applies to any platform.

Symptoms

The Java Extend-Client when configured to access an extend-proxy will accept any valid certificate without checking hostname or subjectAlternative names. Coherence Extend-Client configuration appears to be insecure by default. This opens up the extend-client connection to man-in-the-middle attacks.

Cause

	To view full details, sign in with your My Oracle Support account.
	Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.

Coherence Java Extend-Client Accepting any Valid Certificate Without Checking Hostname (Doc ID 2749033.1)

Applies to:

Symptoms

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!