jboss-ejb-client is vulnerable to denial of service. The EJB SessionOpenInvocations may not be removed properly after a response is received, potentially allowing an attacker to cause a denial of service condition.
access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.2/
access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.2/html-single/installation_guide/
access.redhat.com/errata/RHSA-2020:3141
access.redhat.com/errata/RHSA-2020:3142
access.redhat.com/errata/RHSA-2020:3143
access.redhat.com/errata/RHSA-2020:3144
access.redhat.com/errata/RHSA-2020:3461
access.redhat.com/errata/RHSA-2020:3462
access.redhat.com/errata/RHSA-2020:3463
access.redhat.com/errata/RHSA-2020:3464
access.redhat.com/errata/RHSA-2020:3501
access.redhat.com/errata/RHSA-2020:3539
access.redhat.com/errata/RHSA-2020:3637
access.redhat.com/errata/RHSA-2020:3638
access.redhat.com/errata/RHSA-2020:3639
access.redhat.com/errata/RHSA-2020:3642
access.redhat.com/errata/RHSA-2020:3817
access.redhat.com/security/cve/CVE-2020-14307
access.redhat.com/security/updates/classification/#important
bugzilla.redhat.com/show_bug.cgi?id=1851327
bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-14307