Intrusion Prevention

Apache.Tomcat.CVE-2025-31650.DoS

Description

This indicates an attack attempt to exploit a Denial of Service Vulnerability in Apache Software Foundation Tomcat.
The vulnerability is due to improper validation of inputs. A remote, unauthenticated attacker can exploit this vulnerability by sending invalid HTTP priority headers to the vulnerable server. Successful exploitation results in incomplete clean-up of the failed request, eventually leading to denial of service conditions.

Affected Products

Apache Tomcat 11.0.0-M2 to 11.0.5
Apache Tomcat 10.1.10 to 10.1.39
Apache Tomcat 9.0.76 to 9.0.102

Impact

Denial of Service: Remote attackers can crash vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
https://lists.apache.org/thread/j6zzk0y3yym9pzfzkq5vcyxzz0yzh826

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date	Version	Status	Detail
2025-06-05	33.020	Modified	Default_action:pass:drop
2025-05-15	32.009	Modified	Sig Added
2025-05-13	32.007	New

ID	57935
Created	May 06, 2025
Updated	Oct 04, 2025
CVE ID
Risk
Exploit Prediction Score	20.28%
Default Action	drop
Active
Affected OS	Windows, Linux
Affected App	Apache
Profile Type	DoS

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Intrusion Prevention

Apache.Tomcat.CVE-2025-31650.DoS

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

Research Center

Services

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Threat Intelligence Center

Support Center

Resource Center

About

Intrusion Prevention

Apache.Tomcat.CVE-2025-31650.DoS

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

Threat Intelligence
Center