CVE-2024-33996

Incorrect validation of allowed event types in a calendar web service made it possible for some users to create events with types/audiences they did not have permission to publish to. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt