AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

CVE-2024-48530: An issue in the Instructor Appointment Availability module of eSoft Planner 3.24.08271-USA allows attackers to cause a D

highvulnerability

security

Source: NVD/CVE DatabaseNovember 20, 2024CVE-2024-48530

Summary

CVE-2024-48530 is a vulnerability in eSoft Planner version 3.24.08271-USA that allows attackers to cause a DoS (denial of service, where a system becomes unavailable to legitimate users) through a specially crafted POST request (a type of web request) sent to the Instructor Appointment Availability module. The vulnerability stems from CWE-770, which means the software fails to limit resource allocation, allowing attackers to exhaust system resources.

Vulnerability Details

CVSS Score

7.5(high)

EPSS (30-day exploit probability)

EPSS: 0.3%

Classification

Attack SophisticationTrivial

Taxonomy References

CWE (Weakness Type)

CWE-770

CAPEC (Attack Pattern)

CAPEC-130

Original source: https://nvd.nist.gov/vuln/detail/CVE-2024-48530

First tracked: February 15, 2026 at 08:37 PM

Classified by LLM (prompt v3) · confidence: 95%