The UndertowService is missing permissions for registering MBeans. This is used in some logging tests and if a test that configures a log context first is done then the org.wildfly.security.manager._private.SecurityMessages.access is associated with that log context because of the failed permissions.

While it seems like a bug that the LogContext might be getting leaked, this is a special case because Undertow is started from a deployment which will not be done in a normal server. I do think there are some improvements in the logging subsystem that may be able to be done. However, I do feel this is more of a test issue.