My Oracle Support Banner

Coherence Java Extend-Client Accepting any Valid Certificate Without Checking Hostname (Doc ID 2749033.1)

Last updated on FEBRUARY 22, 2024

Applies to:

Oracle Coherence - Version and later
Information in this document applies to any platform.


The Java Extend-Client when configured to access an extend-proxy will accept any valid certificate without checking hostname or subjectAlternative names. Coherence Extend-Client configuration appears to be insecure by default. This opens up the extend-client connection to man-in-the-middle attacks.


To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.