Medium severity5.7NVD Advisory· Published Jun 23, 2025· Updated Apr 15, 2026

CVE-2021-47688

Description

In WhiteBeam 0.2.0 through 0.2.1 before 0.2.2, a user with local access to a server can bypass the allow-list functionality because a file can be truncated in the OpenFileDescriptor action before the VerifyCanWrite action is performed.

Patches

e73b37ff9eaa

https://github.com/WhiteBeamSec/WhiteBeamvia osv

Vulnerability mechanics

Generated by null/stub on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

github.com/WhiteBeamSec/WhiteBeam/pull/22nvd
github.com/WhiteBeamSec/WhiteBeam/security/advisories/GHSA-3f8r-9483-pfxjnvd
github.com/WhiteBeamSec/WhiteBeam/security/policynvd

News mentions

No linked articles in our index yet.

cvss	0.371
epss	0.000
exploit	0.000
kev	0.000
patch	-0.070
ransomware	0.000