Gentoo: >> Xdg-Utils Security Vulnerabilities
Eval injection vulnerability in xdg-utils 1.1.0 RC1, when no supported desktop environment is identified, allows context-dependent attackers to execute arbitrary code via the URL argument to xdg-open.
CVSS Score
6.8
EPSS Score
0.009
Published
2015-01-21
Xdg-utils 1.0.2 and earlier allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in a URL argument to (1) xdg-open or (2) xdg-email.
CVSS Score
6.8
EPSS Score
0.025
Published
2008-02-04