ROOT-APP-PYPI-CVE-2025-8869

See a problem?
Please try reporting it to the source first.

Source

https://root.io/security/ROOT-APP-PYPI-CVE-2025-8869

Import Source

https://api.root.io/external/osv/ROOT-APP-PYPI-CVE-2025-8869.json

JSON Data

https://api.osv.dev/v1/vulns/ROOT-APP-PYPI-CVE-2025-8869

Upstream

CVE-2025-8869

Published

2026-02-04T09:02:08Z

Modified

2026-02-13T03:18:40.553740Z

Summary

CVE-2025-8869 in rootio-pip - Patched by Root

Details

Root has patched CVE-2025-8869 in the rootio-pip package for Root:PyPI. Multiple fixed versions available.

Database specific

{
    "source": "Root",
    "distro": "pypi",
    "distro_version": ""
}

References

Affected packages

Root:PyPI / rootio-pip

Package

Name: rootio-pip

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

25.0+root.io.1

Fixed

25.0.1+root.io.1

Fixed

25.2+root.io.1

Fixed

23.2.1+root.io.1

Fixed

23.2.1+root.io.2

Fixed

23.0.1+root.io.2

Fixed

22.2.1+root.io.2

Fixed

24.2+root.io.1

Fixed

21.2.4+root.io.1

Fixed

21.2.4+root.io.2

Fixed

24.0+root.io.1

Fixed

23.3.1+root.io.1

Database specific

source

"https://api.root.io/external/osv/ROOT-APP-PYPI-CVE-2025-8869.json"

total_fixed_versions

12.0

root_patch_version

"root.io.1"

root_patched

true

all_fixed_versions

[
    "25.0+root.io.1",
    "25.0.1+root.io.1",
    "25.2+root.io.1",
    "23.2.1+root.io.1",
    "23.2.1+root.io.2",
    "23.0.1+root.io.2",
    "22.2.1+root.io.2",
    "24.2+root.io.1",
    "21.2.4+root.io.1",
    "21.2.4+root.io.2",
    "24.0+root.io.1",
    "23.3.1+root.io.1"
]

upstream_version

"23.3.1"