Apache

Security Scorecard

Score

9F

Total CVEs

943

Patch Rate

6%

55 patched

Avg Response

459d

days to patch

Critical Gaps

21

exploitable, no detection

Severity Breakdown

Critical4

High19

Medium67

Low0

Patch Status

Patched55 (6%)

Partial/Workaround5 (1%)

Unpatched883 (94%)

CVEs (949)

CVE ID	Title	Severity	Score	Days	Patch
CVE-2017-5181	Apache HTTP Server Remote File Inclusion Vulnerability	N/A	-	3163d	Unpatched
CVE-2017-7874	Apache Log4Shell Vulnerability	N/A	-	3168d	Unpatched
CVE-2016-1000258	Apache Log4Shell Vulnerability	N/A	-	3169d	Unpatched
CVE-2017-7286	CVE-2017-7286 (Apache Commons RMI)	N/A	-	3173d	Unpatched
CVE-2016-1000350	Log4Shell	N/A	-	3180d	Unpatched
CVE-2015-3944	Unspecified	N/A	-	3198d	Unpatched
CVE-2015-3945	Zero-Day in Apache HTTP Server	N/A	-	3198d	Unpatched
CVE-2015-3941	Apache HTTP Server Remote File Inclusion Vulnerability	N/A	-	3198d	Unpatched
CVE-2012-4910	Apache Struts 2.5.x Remote Code Execution Vulnerability	N/A	-	3199d	Unpatched
CVE-2012-4725	Apache HTTP Server Remote File Inclusion Vulnerability	N/A	-	3199d	Unpatched