Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
Rootio-Linux: Unauthenticated Command Injection
ROOT-OS-DEBIAN-11-CVE-2025-40095
Summary
The rootio-linux package in Root:Debian:11 has a security flaw that could allow an attacker to inject malicious commands without being authenticated. This could lead to unauthorized access to the system. Users should update to the latest patched version to stay secure.
What to do
- Update rootio-linux to version 5.10.247-1.root.io.42.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| – | rootio-linux | <= 5.10.247-1.root.io.42 | 5.10.247-1.root.io.42 |
Original title
CVE-2025-40095 in rootio-linux - Patched by Root
Original description
Root has patched CVE-2025-40095 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available.
Published: 6 Mar 2026 · Updated: 6 Mar 2026 · First seen: 6 Mar 2026