CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
Confidence
High
Vulnerability of the allocate_structures function of the utility for measuring and analyzing system performance
sysstat is related to insufficient bounds checking before arithmetic multiplication, which allows an overflow of the size allocated for the buffer representing system actions.
overflow of the size allocated to the buffer representing system actions. Exploitation of the
of the vulnerability could allow an attacker to execute arbitrary code or cause a denial of service