Jboss EAP Permissions Privileges and Access Controls Vulnerability - CVE-2014-3586

The default configuration for the Command Line Interface in Red Hat Enterprise Application Platform before 6.4.0 and WildFly (formerly JBoss Application Server) uses weak permissions for .jboss-cli-history which allows local users to obtain sensitive information via unspecified vectors.