Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
rootio-linux: Unauthenticated Remote Code Execution via HTTP
ROOT-OS-UBUNTU-2404-CVE-2025-38132
Summary
The rootio-linux package has a security issue that could allow an attacker to execute code on your system without a password. This is a serious issue because it could be exploited by a malicious person to take control of your system. You should update to the latest version of rootio-linux to fix this issue.
What to do
- Update rootio-linux to version 6.8.0-90.91.root.io.30.
- Update rootio-linux to version 6.8.0-106.106.root.io.59.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| – | rootio-linux | <= 6.8.0-90.91.root.io.30 | 6.8.0-90.91.root.io.30 |
| – | rootio-linux | <= 6.8.0-106.106.root.io.59 | 6.8.0-106.106.root.io.59 |
Original title
CVE-2025-38132 in rootio-linux - Patched by Root
Original description
Root has patched CVE-2025-38132 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available.
Published: 1 Apr 2026 · Updated: 1 Apr 2026 · First seen: 14 Mar 2026