PT-2012-6098 · Apache · Apache Cxf
Name of the Vulnerable Software and Affected Versions: Apache CXF versions prior to 2.7.0 Description: The issue arises from the wsdl first https sample code in Apache CXF, which fails to verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field...