Last update: February 19, 2023 J2EE Misconfiguration: Weak Access Permissions for EJB Methods If elevated access rights are assigned to EJB methods, then an attacker can take advantage of the permissions to exploit the product.