EPSS
Percentile
5.1%
pleaseedit in pleaser before 0.4 uses predictable temporary filenames in /tmp and the target directory. This allows a local attacker to gain full root privileges by staging a symlink attack.
crates.io/crates/pleaser
nvd.nist.gov/vuln/detail/CVE-2021-31154
rustsec.org/advisories/RUSTSEC-2021-0102.html