Apache

Security Scorecard

Score

9F

Total CVEs

943

Patch Rate

6%

55 patched

Avg Response

459d

days to patch

Critical Gaps

21

exploitable, no detection

Severity Breakdown

Critical4

High19

Medium67

Low0

Patch Status

Patched55 (6%)

Partial/Workaround5 (1%)

Unpatched883 (94%)

CVEs (949)

CVE ID	Title	Severity	Score	Days	Patch
CVE-2017-4446	Apache HTTP Server Remote Code Execution Vulnerability	N/A	-	2837d	Unpatched
CVE-2017-4444	CVE-2017-4444	N/A	-	2837d	Unpatched
CVE-2017-4471	Zero-Day RCE in a Legacy Java Library	N/A	-	2837d	Unpatched
CVE-2017-4456	Apache Tomcat Web Application Vulnerability	N/A	-	2837d	Unpatched
CVE-2017-4464	Apache HTTP Server Remote File Inclusion Vulnerability	N/A	-	2837d	Unpatched
CVE-2017-4474	Unspecified	N/A	-	2837d	Unpatched
CVE-2017-4487	Apache HTTP Server Remote Code Execution Vulnerability	N/A	-	2837d	Unpatched
CVE-2017-4481	Apache HTTP Server Remote Code Execution Vulnerability	N/A	-	2837d	Unpatched
CVE-2017-4479	Zero-Day RCE in a Java-based Logging Library	N/A	-	2837d	Unpatched
CVE-2017-4491	Apache HTTP Server Remote File Inclusion Vulnerability	N/A	-	2837d	Unpatched