Apache

Security Scorecard

Score

9F

Total CVEs

943

Patch Rate

6%

55 patched

Avg Response

459d

days to patch

Critical Gaps

21

exploitable, no detection

Severity Breakdown

Critical4

High19

Medium67

Low0

Patch Status

Patched55 (6%)

Partial/Workaround5 (1%)

Unpatched883 (94%)

CVEs (949)

CVE ID	Title	Severity	Score	Days	Patch
CVE-2016-8053	Unpatched Java Logging Library	N/A	-	3145d	Unpatched
CVE-2016-8070	Unspecified	N/A	-	3145d	Unpatched
CVE-2016-8080	Apache Log4j Remote Code Execution Vulnerability	N/A	-	3145d	Unpatched
CVE-2016-8089	CVE-2016-8089 (Apache POI)	N/A	-	3145d	Unpatched
CVE-2016-8077	Unspecified	N/A	-	3145d	Unpatched
CVE-2016-8266	Apache Log4j Vulnerability	N/A	-	3145d	Unpatched
CVE-2016-9060	Zero-Day Vulnerability in Apache HTTP Server	N/A	-	3145d	Unpatched
CVE-2016-9170	Apache HTTP Server Remote Code Execution Vulnerability	N/A	-	3145d	Unpatched
CVE-2016-9241	CVE-2016-9241 (Apache Commons RMI Vulnerability)	N/A	-	3145d	Unpatched
CVE-2016-9328	CVE-2016-9328 - Uninitialized Pointer Dereference in libxml2	N/A	-	3145d	Unpatched