Main Vulnerability Database Exploits ID:11686 - Exploit for Improper error handling in Apache Tomcat - CVE-2025-31650

ID:11686 - Exploit for Improper error handling in Apache Tomcat - CVE-2025-31650

Published: June 20, 2025

Vulnerability identifier: #VU107996

Vulnerability risk: Medium

CVE-ID: CVE-2025-31650

CWE-ID: CWE-388

Exploitation vector: Remote access

Vulnerable software:
Apache Tomcat

Link to public exploit:

https://github.com/assad12341/Dos-exploit-

Vulnerability description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient error handling for certain invalid HTTP priority headers. A remote attacker can send a large amount of specially crafted HTTP requests to the server and consume all available memory, resulting in a denial of service condition.

Remediation

Install updates from vendor's website.

ID:11686 - Exploit for Improper error handling in Apache Tomcat - CVE-2025-31650

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human