This page lists publicly disclosed CVE vulnerabilities affecting gentoo xdg-utils (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2014-9622 | Eval injection vulnerability in xdg-utils 1.1.0 RC1, when no supported desktop environment is identified, allows context-dependent attackers to execute arbitrary code via the URL argument to xdg-open. | [email protected] | 6.8 | 3.26% | 2015-01-21 | 2026-06-16 |
| CVE-2008-0386 | Xdg-utils 1.0.2 and earlier allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in a URL argument to (1) xdg-open or (2) xdg-email. | [email protected] | 6.8 | 3.17% | 2008-02-04 | 2026-06-16 |