CVE-2025-31650
published 2025-04-28CVE-2025-31650: Improper Input Validation vulnerability in Apache Tomcat. Incorrect error handling for some invalid HTTP priority headers resulted in incomplete clean-up of…
high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EXPLOIT
Improper Input Validation vulnerability in Apache Tomcat. Incorrect error handling for some invalid HTTP priority headers resulted in incomplete clean-up of the failed request which created a memory leak. A large number of such requests could trigger an OutOfMemoryException resulting in a denial of service.
This issue affects Apache Tomcat: from 9.0.76 through 9.0.102, from 10.1.10 through 10.1.39, from 11.0.0-M2 through 11.0.5.
The following versions were EOL at the time the CVE was created but are
known to be affected: 8.5.90 though 8.5.100.
Users are recommended to upgrade to version 9.0.104, 10.1.40 or 11.0.6 which fix the issue.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | tomcat | — | — |
| apache | tomcat | >= 10.1.10 < 10.1.40 | 10.1.40 |
| apache | tomcat | >= 11.0.1 < 11.0.6 | 11.0.6 |
| apache | tomcat | >= 9.0.76 < 9.0.104 | 9.0.104 |
| apache_software_foundation | apache_tomcat | 10.1.10 – 10.1.39 | — |
| apache_software_foundation | apache_tomcat | 11.0.0-M2 – 11.0.5 | — |
| apache_software_foundation | apache_tomcat | 8.5.90 – 8.5.100 | — |
| apache_software_foundation | apache_tomcat | 9.0.76 – 9.0.102 | — |
| debian | tomcat10 | < tomcat10 10.1.40-1 (bookworm) | tomcat10 10.1.40-1 (bookworm) |
| debian | tomcat11 | < tomcat10 10.1.40-1 (bookworm) | tomcat10 10.1.40-1 (bookworm) |
| debian | tomcat9 | < tomcat10 10.1.40-1 (bookworm) | tomcat10 10.1.40-1 (bookworm) |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
osv9.8CRITICAL