June 23, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Multiple Dell PowerProtect Vulnerabilities
April 29, 2025
TAG-124: The Emerging Threat Behind Targeted Malware Campaigns – Active IOCs
April 29, 2025
Multiple Dell PowerProtect Vulnerabilities
April 29, 2025
TAG-124: The Emerging Threat Behind Targeted Malware Campaigns – Active IOCs
April 29, 2025
Severity
High
Analysis Summary
CVE-2025-31650
Apache Tomcat has a vulnerability in handling HTTP priority headers. When invalid headers are processed, the error handling fails to clean up requests properly. This creates a memory leak. If many such requests are sent, the system could run out of memory and stop working.
Impact
- Denial of Service
Indicators of Compromise
CVE
CVE-2025-31650
Affected Vendors
Apache
Affected Products
- Apache Tomcat - 10.1.10 - 10.1.39
- Apache Tomcat - 11.0.0 - 11.0.5
- Apache Tomcat - 9.0.76 - 9.0.102
Remediation
Upgrade to the latest version of Apache Tomcat, available from the Apache Security Advisory.