My Oracle Support Banner

Coherence Java Extend-Client Accepting any Valid Certificate Without Checking Hostname (Doc ID 2749033.1)

Last updated on FEBRUARY 04, 2021

Applies to:

Oracle Coherence - Version 14.1.1.0.1 and later
Information in this document applies to any platform.

Symptoms

The Java Extend-Client when configured to access an extend-proxy will accept any valid certificate without checking hostname or subjectAlternative names. Coherence Extend-Client configuration appears to be insecure by default. This opens up the extend-client connection to man-in-the-middle attacks.

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Cause
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.