Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
rootio-linux: Unauthenticated Command Injection via Network
ROOT-OS-UBUNTU-2404-CVE-2025-38360
Summary
An attacker can execute arbitrary commands on your system without a password. This could allow them to delete files, install malware, or take control of your server. Update to a fixed version of rootio-linux to protect your system.
What to do
- Update rootio-linux to version 6.8.0-107.107.root.io.60.
- Update rootio-linux to version 6.8.0-110.110.root.io.62.
- Update rootio-linux to version 6.8.0-110.110.root.io.63.
Affected software
| Ecosystem | Vendor | Product | Affected versions |
|---|---|---|---|
| Root:Ubuntu:24.04 | – | rootio-linux |
< 6.8.0-107.107.root.io.60 < 6.8.0-110.110.root.io.62 < 6.8.0-110.110.root.io.63 Fix: upgrade to 6.8.0-107.107.root.io.60
|
Original title
CVE-2025-38360 in rootio-linux - Patched by Root
Original description
Root has patched CVE-2025-38360 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available.
Published: 20 Apr 2026 · Updated: 20 Apr 2026 · First seen: 6 Apr 2026