Pedro,
After further testing, what is exposed is not part of the SEAM framework, but a different vulnerability/exposure.
It seems to be part of the jboss_maindeployer, but I haven't been able to completely narrow this down. There is an earlier CVE that outlines this vulnerability exactly, however the JBoss versions listed are earlier versions than what is used for CA Process Automation - CVE-2008-3273 - So I am right now unable to determine exactly where the problem is coming from.
I do know, however, that this is no longer exposed in CA Process Automation version 4.3 SP02.
I would suggest first that you upgrade to 4.3 SP02.
If you require this to be resolved at the 4.3 SP01 level, then we will need to get an case opened, and follow this through with the engineering team. I cannot provide any information as to an ETA for a fix, so your best option is to upgrade the product where this is no longer an issue.
If you do open an issue for this rather than upgrading, please add to the issue to get the issue to the attention of the CA Process Automation team as we are aware of this.
Let us know what you decide.
~Jennifer