{"url":"http://public2.vulnerablecode.io/api/packages/371274?format=json","purl":"pkg:rpm/redhat/sysstat@4.0.7-4.EL3?arch=2","type":"rpm","namespace":"redhat","name":"sysstat","version":"4.0.7-4.EL3","qualifiers":{"arch":"2"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/199658?format=json","vulnerability_id":"VCID-9xfh-3d6r-y3gj","summary":"The isag utility, which processes sysstat data, allows local users to overwrite arbitrary files via a symlink attack on temporary files, a different vulnerability than CAN-2004-0107.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0108.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0108.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0108","reference_id":"","reference_type":"","scores":[{"value":"0.00076","scoring_system":"epss","scoring_elements":"0.22925","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0108"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0108","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0108"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617153","reference_id":"1617153","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617153"},{"reference_url":"https://access.redhat.com/errata/RHSA-2004:053","reference_id":"RHSA-2004:053","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2004:053"}],"fixed_packages":[],"aliases":["CVE-2004-0108"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9xfh-3d6r-y3gj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/199657?format=json","vulnerability_id":"VCID-tukq-rxvv-s7d8","summary":"The (1) post and (2) trigger scripts in sysstat 4.0.7 and earlier allow local users to overwrite arbitrary files via symlink attacks on temporary files, a different vulnerability than CVE-2004-0108.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0107.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0107.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0107","reference_id":"","reference_type":"","scores":[{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22209","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0107"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0107","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0107"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617152","reference_id":"1617152","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617152"},{"reference_url":"https://access.redhat.com/errata/RHSA-2004:053","reference_id":"RHSA-2004:053","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2004:053"},{"reference_url":"https://access.redhat.com/errata/RHSA-2004:093","reference_id":"RHSA-2004:093","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2004:093"}],"fixed_packages":[],"aliases":["CVE-2004-0107"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tukq-rxvv-s7d8"}],"fixing_vulnerabilities":[],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/sysstat@4.0.7-4.EL3%3Farch=2"}