Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
Rootio-Linux: Unauthenticated Command Injection in Root
ROOT-OS-DEBIAN-13-CVE-2025-38645
Summary
An unauthorized attacker could inject malicious commands into the Rootio-Linux system, potentially allowing them to gain unauthorized access or control. This issue has been patched by Root, and multiple updated versions are available. We recommend updating to a patched version as soon as possible to prevent potential exploitation.
What to do
- Update rootio-linux to version 6.12.63-1.root.io.64.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| – | rootio-linux | <= 6.12.63-1.root.io.64 | 6.12.63-1.root.io.64 |
Original title
CVE-2025-38645 in rootio-linux - Patched by Root
Original description
Root has patched CVE-2025-38645 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available.
Published: 6 Mar 2026 · Updated: 6 Mar 2026 · First seen: 6 Mar 2026