Apache
Security Scorecard
Score
9F
Total CVEs
943
Patch Rate
6%
55 patched
Avg Response
459d
days to patch
Critical Gaps
21
exploitable, no detection
Severity Breakdown
Critical4
High19
Medium67
Low0
Patch Status
Patched55 (6%)
Partial/Workaround5 (1%)
Unpatched883 (94%)
CVEs (949)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2017-3930 | CVE-2017-3930 - "Unauthenticated Remote Code Execution" | N/A | - | 2837d | Unpatched |
| CVE-2017-3949 | Apache HTTP Server Remote File Inclusion Vulnerability | N/A | - | 2837d | Unpatched |
| CVE-2017-3941 | Apache HTTP Server Remote Code Execution Vulnerability | N/A | - | 2837d | Unpatched |
| CVE-2017-3942 | Apache Log4j 2.x Remote Code Execution Vulnerability | N/A | - | 2837d | Unpatched |
| CVE-2017-3984 | Apache Tomcat Vulnerability | N/A | - | 2837d | Unpatched |
| CVE-2017-3979 | CVE-2017-3979 - "Apache Commons Codec Insecure Deserialization" | N/A | - | 2837d | Unpatched |
| CVE-2017-3986 | CVE-2017-3986 - "Unsorted Deserialization" | N/A | - | 2837d | Unpatched |
| CVE-2017-4020 | Apache OpenOffice | N/A | - | 2837d | Unpatched |
| CVE-2017-4004 | Apache Struts 2.x Heartbleed Vulnerability | N/A | - | 2837d | Unpatched |
| CVE-2017-4021 | Apache Tomcat Vulnerability | N/A | - | 2837d | Unpatched |