PT-2025-26640 · Whitebeam · Whitebeam
Published
2025-06-23
·
Updated
2025-06-24
·
CVE-2021-47688
CVSS v3.1
5.7
Medium
| Vector | AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:L |
Name of the Vulnerable Software and Affected Versions:
WhiteBeam versions 0.2.0 through 0.2.1
Description:
A user with local access to a server can bypass the allow-list functionality because a file can be truncated in the
OpenFileDescriptor action before the VerifyCanWrite action is performed.Recommendations:
For WhiteBeam versions 0.2.0 through 0.2.1, update to version 0.2.2 or later to resolve the issue.
Fix
LPE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Whitebeam