It was found that the improper default permissions on /tmp/auth directory in EAP 7 can allow any local user to connect to CLI and allow the user to execute any arbitrary operations.
The improper default permissions on /tmp/auth directory can allow any local user to connect to CLI and allow arbitary operations.
This issue has been addressed in the following products:
Red Hat JBoss Enterprise Application Platform
Via RHSA-2017:3456 https://access.redhat.com/errata/RHSA-2017:3456
Name: Jeremy Choi (Red Hat)