Exploit for Incomplete Cleanup in Apache Tomcat CVE-2025-31650

Name: Exploit for Incomplete Cleanup in Apache Tomcat CVE-2025-31650
Rating: 5 (245 reviews)

2025-04-30 | CVSS 7.5

## https://sploitus.com/exploit?id=F7FD7EE4-033A-57E1-A197-83E4803B1381
# TomcatKiller-CVE-2025-31650
A tool designed to detect the vulnerability **CVE-2025-31650** in Apache Tomcat (versions 10.1.10 to 10.1.39)
This vulnerability allows an attacker to trigger a **memory leak** by sending specially crafted HTTP/2 requests with invalid priority headers, leading to a denial-of-service (DoS) condition via an `OutOfMemoryError`.

--------------------------------------------------------------------------------
![TomcatKiller](Poc.png)