Apache
Security Scorecard
Score
9F
Total CVEs
943
Patch Rate
6%
55 patched
Avg Response
459d
days to patch
Critical Gaps
21
exploitable, no detection
Severity Breakdown
Critical4
High19
Medium67
Low0
Patch Status
Patched55 (6%)
Partial/Workaround5 (1%)
Unpatched883 (94%)
CVEs (949)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2017-6902 | Zero-Day RCE in Apache Kafka | N/A | - | 3200d | Unpatched |
| CVE-2015-7958 | CVE-2015-7958 - 'Apache Commons RMI' Remote Code Execution Vulnerability | N/A | - | 3208d | Unpatched |
| CVE-2016-8557 | Apache Kafka | N/A | - | 3220d | Unpatched |
| CVE-2016-8560 | CVE-2016-8560 (Unspecified) | N/A | - | 3220d | Unpatched |
| CVE-2016-8753 | CVE-2016-8753 - "Unpatched Java Logging Library" | N/A | - | 3238d | Unpatched |
| CVE-2016-6091 | Apache HTTP Server Remote Code Execution Vulnerability | N/A | - | 3263d | Unpatched |
| CVE-2016-8841 | Apache HTTP Server Remote File Inclusion Vulnerability | N/A | - | 3270d | Unpatched |
| CVE-2016-2251 | Apache Tomcat Vulnerability | N/A | - | 3271d | Unpatched |
| CVE-2016-2250 | Log4Shell Vulnerability | N/A | - | 3271d | Unpatched |
| CVE-2016-2247 | Apache HTTP Server Remote Code Execution Vulnerability | N/A | - | 3271d | Unpatched |