Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In WhiteBeam 0.2.0 through 0.2.1 before 0.2.2, a user with local access to a server can bypass the allow-list functionality because a file can be truncated in the OpenFileDescriptor action before the VerifyCanWrite action is performed.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:L
Vulnerability Type
不正确的行为次序
Vulnerability Title
WhiteBeam 安全漏洞
Vulnerability Description
WhiteBeam是WhiteBeam开源的一个网络威胁防护软件。 WhiteBeam 0.2.1至0.2.2之前版本存在安全漏洞,该漏洞源于文件截断操作可绕过白名单功能。
CVSS Information
N/A
Vulnerability Type
N/A