This issue was addressed with improved checks. This issue is fixed in macOS Catalina 10.15.5. Importing a maliciously crafted calendar invitation may exfiltrate user information.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Mac_os_x |
Apple |
* |
10.15.5 (excluding) |
References