Apache

Security Scorecard

Score

9F

Total CVEs

943

Patch Rate

6%

54 patched

Avg Response

275d

days to patch

Critical Gaps

21

exploitable, no detection

Severity Breakdown

Critical4

High19

Medium67

Low0

Patch Status

Patched54 (6%)

Partial/Workaround5 (1%)

Unpatched884 (94%)

CVEs (949)

CVE ID	Title	Severity	Score	Days	Patch
CVE-2025-62253	Liferay Portal Redirect Vulnerability	MEDIUM	6.1	47d	Patched
CVE-2025-62262	Liferay LDAP Log File Exposure	MEDIUM	4.4	53d	Patched
CVE-2025-61795	Apache Tomcat DoS Vulnerability	MEDIUM	5.3	53d	Unpatched
CVE-2025-62248	Liferay XSS	MEDIUM	4.8	58d	Patched
CVE-2024-31573	XMLUnit Vulnerability	MEDIUM	4.0	63d	Patched
CVE-2025-55039	Apache Spark Encryption Bypass	MEDIUM	6.5	66d	Patched
CVE-2024-44088	Apache Geode Web-Api Cross-Site Scripting	MEDIUM	6.1	67d	Patched
CVE-2025-62245	Liferay CSRF Vulnerability	MEDIUM	4.3	64d	Patched
CVE-2025-62240	Liferay Portal XSS Vulnerability	MEDIUM	5.4	65d	Patched
CVE-2025-43830	Liferay Portal XSS	MEDIUM	6.1	66d	Patched