ID:11359 - Exploit for Improper error handling in Apache Tomcat - CVE-2025-31650

CSH
CYBERSECURITY HELP
Sign In REGISTER
 
Main Vulnerability Database Exploits ID:11359 - Exploit for Improper error handling in Apache Tomcat - CVE-2025-31650

ID:11359 - Exploit for Improper error handling in Apache Tomcat - CVE-2025-31650

Published: May 9, 2025


Vulnerability identifier: #VU107996
Vulnerability risk: Medium
CVE-ID: CVE-2025-31650
CWE-ID: CWE-388
Exploitation vector: Remote access
Vulnerable software:
Apache Tomcat

Link to public exploit:


Vulnerability description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient error handling for certain invalid HTTP priority headers. A remote attacker can send a large amount of specially crafted HTTP requests to the server and consume all available memory, resulting in a denial of service condition.


Remediation

Install updates from vendor's website.