Rootio-Linux: Unauthenticated Command Execution via Malicious Package

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

Rootio-Linux: Unauthenticated Command Execution via Malicious Package

ROOT-OS-DEBIAN-13-CVE-2026-23207

Summary

The Rootio-Linux system has a security weakness that allows an attacker to execute unauthorized commands. This could potentially be exploited by installing malicious software. Root has released patches to fix this issue.

What to do

Update rootio-linux to version 6.12.73-1.root.io.91.

Affected software

Vendor	Product	Affected versions	Fix available
–	rootio-linux	<= 6.12.73-1.root.io.91	6.12.73-1.root.io.91

Original title

CVE-2026-23207 in rootio-linux - Patched by Root

Original description

Root has patched CVE-2026-23207 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available.

Published: 6 Mar 2026 · Updated: 6 Mar 2026 · First seen: 6 Mar 2026