Apache
Security Scorecard
Score
9F
Total CVEs
943
Patch Rate
6%
55 patched
Avg Response
459d
days to patch
Critical Gaps
21
exploitable, no detection
Severity Breakdown
Critical4
High19
Medium67
Low0
Patch Status
Patched55 (6%)
Partial/Workaround5 (1%)
Unpatched883 (94%)
CVEs (949)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2017-4120 | CVE-2017-4120 - "Unsorted Deserialization" | N/A | - | 2837d | Unpatched |
| CVE-2017-4123 | Log4Shell Vulnerability | N/A | - | 2837d | Unpatched |
| CVE-2017-4129 | CVE-2017-4129 | N/A | - | 2837d | Unpatched |
| CVE-2017-4140 | Apache Tomcat Vulnerability | N/A | - | 2837d | Unpatched |
| CVE-2017-4145 | Apache HTTP Server Remote Code Execution Vulnerability | N/A | - | 2837d | Unpatched |
| CVE-2017-4133 | CVE-2017-4133 - "Unsorted Deserialization" | N/A | - | 2837d | Unpatched |
| CVE-2017-4135 | Apache HTTP Server Remote File Inclusion Vulnerability | N/A | - | 2837d | Unpatched |
| CVE-2017-4146 | Apache HTTP Server Vulnerability | N/A | - | 2837d | Unpatched |
| CVE-2017-4171 | Apache HTTP Server Remote File Inclusion Vulnerability | N/A | - | 2837d | Unpatched |
| CVE-2017-4172 | Apache Struts 2.x Heartbleed Vulnerability | N/A | - | 2837d | Unpatched |