eap7 has insecure token. The vulnerability exists due to a bug in the ELParserTokenManager which enables invalid EL expressions to be evaluated as if they were valid.
access.redhat.com/documentation/en-us/red_hat_fuse/7.10/
access.redhat.com/errata/RHSA-2021:5134
access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=distributions&product=jboss.fuse&version=7.10.0
access.redhat.com/security/updates/classification/#critical
access.redhat.com/security/vulnerabilities/RHSB-2021-009
bugzilla.redhat.com/show_bug.cgi?id=1965497
github.com/eclipse-ee4j/el-ri/issues/155
securitylab.github.com/advisories/GHSL-2020-021-jakarta-el/
www.oracle.com/security-alerts/cpuapr2022.html