4 matches found
Insecure Connection
wildfly-iiop-openjdk is vulnerable to insecure connections. The library does not properly enforce the configuration when SSL is required, leading to insecure plaintext connections when the setting is enabled...
JBoss/WildFly: iiop does not honour strict transport confidentiality
The IIOP OpenJDK Subsystem in WildFly before version 14.0.0 does not honour configuration when SSL transport is required. Servers before this version that are configured with the following setting allow clients to create plaintext connections:...
Moderate: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.1.5 on RHEL 7 security update
An update is now available for Red Hat JBoss Enterprise Application Platform 7.1 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, i...
Insecure Connection
wildfly-iiop-openjdk is vulnerable to Insecure Connection. The library does not properly enforce the configuration when SSL is required, leading to insecure plaintext connections when the setting is enabled...