Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
rootio-linux: Unauthenticated Remote Code Execution via Network
ROOT-OS-DEBIAN-12-CVE-2025-38474
Summary
The rootio-linux package for Debian 12 has a security issue that could allow an attacker to remotely execute malicious code on your system without needing a password. This could happen if an attacker sends a specially crafted network request to your system. You should update to a patched version of rootio-linux to fix this issue.
What to do
- Update rootio-linux to version 6.1.159-1.root.io.75.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| – | rootio-linux | <= 6.1.159-1.root.io.75 | 6.1.159-1.root.io.75 |
Original title
CVE-2025-38474 in rootio-linux - Patched by Root
Original description
Root has patched CVE-2025-38474 in the rootio-linux package for Root:Debian:12. Multiple fixed versions available.
Published: 6 Mar 2026 · Updated: 6 Mar 2026 · First seen: 6 Mar 2026