View at Official suse advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2014-9622 severity moderate: SUSE including 3 source package names (xdg-utils, xdg-utils-20140630-5.1, xdg-utils-20140630-6.3.1), 30 product×package rows across 30 product lines (Image SLES12-SP5-Azure-SAP-BYOS, Image SLES12-SP5-Azure-SAP-On-Demand, … (30 product lines)): Fixed 24, Known Not Affected 6.
Eval injection vulnerability in xdg-utils 1.1.0 RC1, when no supported desktop environment is identified, allows context-dependent attackers to execute arbitrary code via the URL argument to xdg-open.