CVE-2025-13901
MediumCVSS 5.3Exploitation Probability (EPSS)
Low risk38th percentile - higher than 38% of all known CVEs
Summary
A CWE-404 vulnerability exists related to improper resource shutdown or release, which could lead to a partial Denial of Service attack on the Machine Expert protocol. An unauthenticated attacker can send a malicious payload to occupy active communication channels.
Risk Assessment
The organization may experience service availability interruptions related to the Machine Expert protocol, which could impact business operations.
Recommendation
It is recommended to monitor network activity and implement mechanisms to restrict access to the Machine Expert protocol for unauthorized users.
Original NVD description (English source)
CWE-404 Improper Resource Shutdown or Release vulnerability exists that could cause partial Denial of Service on Machine Expert protocol when an unauthenticated attacker sends malicious payload to occupy active communication channels.

