CVE-2022-24682
Exploited in the Wild
✓ Confirmed 0-Day
★ Google Project Zero
Triaged: March 5, 2026
2 articles
EPSS Score
Source: FIRST.org · 2026-05-24
88.63%
probability
This CVE has a 88.63% probability
of being exploited in the next 30 days.
0%
Top 99.5th percentile of all CVEs
100%
CVSS score unavailable
Neither CIRCL nor NVD returned a CVSS score for this CVE.
View on VulnerabilityLookup ↗
Description
Project ZeroXSS in calendar using /h/calendar
Attack Intelligence
Google Project Zero
Discovered
Dec. 16, 2021
Patched
Feb. 5, 2022
Reported by
Volexity
Root Cause Analysis
???
Google: Hackers exploited Zimbra zero-day in attacks on govt orgs
BleepingComputer
Nov 17, 2023
Signal Intelligence
Confidence
95%
EPSS
88.63%
Mentions
2
Last Seen
Nov 17, 2023
CNA Information
Analyst Note
Auto-imported from Google Project Zero — confirmed zero-day by definition.
Triage Info
Decided atMar 05, 2026