pleaseedit in pleaser before 0.4 uses predictable temporary filenames in /tmp and the target directory. This allows a local attacker to gain full root privileges by staging a symlink attack.
{ "license": "CC0-1.0" }
{ "affected_functions": null, "affects": { "os": [], "functions": [], "arch": [] } }
{ "cvss": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "informational": null, "categories": [ "privilege-escalation" ] }