rootio-linux: Unauthenticated Code Execution via Specially Crafted SFTP Request

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

rootio-linux: Unauthenticated Code Execution via Specially Crafted SFTP Request

ROOT-OS-DEBIAN-13-CVE-2026-23217

Summary

A security patch has been released for rootio-linux to prevent unauthorized access to the system via SFTP. This could allow malicious users to execute arbitrary code, potentially leading to data theft or system compromise. Update to the latest version to fix this vulnerability.

What to do

Update rootio-linux to version 6.12.73-1.root.io.93.

Affected software

Vendor	Product	Affected versions	Fix available
–	rootio-linux	<= 6.12.73-1.root.io.93	6.12.73-1.root.io.93

Original title

CVE-2026-23217 in rootio-linux - Patched by Root

Original description

Root has patched CVE-2026-23217 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available.

Published: 6 Mar 2026 · Updated: 6 Mar 2026 · First seen: 6 Mar 2026