CVE Catalog

CVE-2025-13901

MediumCVSS 5.3
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.48%

38th percentile - higher than 38% of all known CVEs

Summary

A CWE-404 vulnerability exists related to improper resource shutdown or release, which could lead to a partial Denial of Service attack on the Machine Expert protocol. An unauthenticated attacker can send a malicious payload to occupy active communication channels.

Risk Assessment

The organization may experience service availability interruptions related to the Machine Expert protocol, which could impact business operations.

Recommendation

It is recommended to monitor network activity and implement mechanisms to restrict access to the Machine Expert protocol for unauthorized users.

Original NVD description (English source)

CWE-404 Improper Resource Shutdown or Release vulnerability exists that could cause partial Denial of Service on Machine Expert protocol when an unauthenticated attacker sends malicious payload to occupy active communication channels.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS