Coherence Java Extend-Client Accepting any Valid Certificate Without Checking Hostname
(Doc ID 2749033.1)
Last updated on FEBRUARY 04, 2021
Applies to:Oracle Coherence - Version 126.96.36.199.1 and later
Information in this document applies to any platform.
The Java Extend-Client when configured to access an extend-proxy will accept any valid certificate without checking hostname or subjectAlternative names. Coherence Extend-Client configuration appears to be insecure by default. This opens up the extend-client connection to man-in-the-middle attacks.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document