This page aggregates publicly disclosed CVE and security risk information related to sysstat, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2007-3852 | The init script (sysstat.in) in sysstat 5.1.2 up to 7.1.6 creates /tmp/sysstat.run insecurely, which allows local users to execute arbitrary code. | [email protected] | 4.4 | 0.14% | 2007-08-14 | 2026-04-23 |
| CVE-2004-0108 | The isag utility, which processes sysstat data, allows local users to overwrite arbitrary files via a symlink attack on temporary files, a different vulnerability than CAN-2004-0107. | [email protected] | 4.6 | 0.08% | 2004-04-15 | 2026-04-16 |
| CVE-2004-0107 | The (1) post and (2) trigger scripts in sysstat 4.0.7 and earlier allow local users to overwrite arbitrary files via symlink attacks on temporary files, a different vulnerability than CVE-2004-0108. | [email protected] | 4.6 | 0.07% | 2004-04-15 | 2026-04-16 |