Vulnerabilities > Improper Neutralization of Expression/Command Delimiters

DATE CVE VULNERABILITY TITLE RISK
2022-11-19 CVE-2022-4055 Improper Neutralization of Expression/Command Delimiters vulnerability in Freedesktop Xdg-Utils
When xdg-mail is configured to use thunderbird for mailto URLs, improper parsing of the URL can lead to additional headers being passed to thunderbird that should not be included per RFC 2368.
network
low complexity
freedesktop CWE-146
7.4