2018-09-04 14:29:00 2019-10-03 02:03:26

The IIOP OpenJDK Subsystem in WildFly before version 14.0.0 does not honour configuration when SSL transport is required. Servers before this version that are configured with the following setting allow clients to create plaintext connections:

Vector

NETWORK

Complexity

MEDIUM

Authentication

NONE

Confidentiality

PARTIAL

Integrity

NONE

Availability

NONE
Redhat Wildfly 8.0.0 - (not an official CPE) Redhat Wildfly 8.0.0 Alpha1 (not an official CPE) Redhat Wildfly 8.0.0 Alpha2 (not an official CPE) Redhat Wildfly 8.0.0 Alpha3 (not an official CPE) Redhat Wildfly 8.0.0 Alpha4 (not an official CPE) Redhat Wildfly 8.0.0 Beta1 (not an official CPE) Redhat Wildfly 8.0.0 Cr1 (not an official CPE) Redhat Wildfly 8.1.0 - (not an official CPE) Redhat Wildfly 8.1.0 Cr1 (not an official CPE) Redhat Wildfly 8.1.0 Cr2 (not an official CPE) Redhat Wildfly 8.2.1 (not an official CPE) Redhat Wildfly 9.0.0 - (not an official CPE) Redhat Wildfly 9.0.0 Alpha1 (not an official CPE) Redhat Wildfly 9.0.0 Beta1 (not an official CPE) Redhat Wildfly 9.0.0 Beta2 (not an official CPE) Redhat Wildfly 9.0.0 Cr1 (not an official CPE) Redhat Wildfly 9.0.0 Cr2 (not an official CPE) Redhat Wildfly 9.0.1 (not an official CPE) Redhat Wildfly 9.0.2 (not an official CPE) Redhat Wildfly 10.0.0 - (not an official CPE) Redhat Wildfly 10.0.0 Beta1 (not an official CPE) Redhat Wildfly 10.0.0 Beta2 (not an official CPE) Redhat Wildfly 10.0.0 Cr1 (not an official CPE) Redhat Wildfly 10.0.0 Cr2 (not an official CPE) Redhat Wildfly 10.0.0 Cr3 (not an official CPE) Redhat Wildfly 10.0.0 Cr5 (not an official CPE) Redhat Wildfly 10.1.0 - (not an official CPE) Redhat Wildfly 10.1.0 Cr1 (not an official CPE) Redhat Wildfly 11.0.0 (not an official CPE) Redhat Wildfly 11.0.0 - (not an official CPE) Redhat Wildfly 11.0.0 Alpha1 (not an official CPE) Redhat Wildfly 11.0.0 Beta1 (not an official CPE) Redhat Wildfly 11.0.0 Cr1 (not an official CPE) Redhat Wildfly 12.0.0 - (not an official CPE) Redhat Wildfly 12.0.0 Cr1 (not an official CPE) Redhat Wildfly 13.0.0 - (not an official CPE) Redhat Wildfly 13.0.0 Beta1 (not an official CPE)