Apache

Security Scorecard

Score

9F

Total CVEs

943

Patch Rate

6%

55 patched

Avg Response

459d

days to patch

Critical Gaps

21

exploitable, no detection

Severity Breakdown

Critical4

High19

Medium67

Low0

Patch Status

Patched55 (6%)

Partial/Workaround5 (1%)

Unpatched883 (94%)

CVEs (949)

CVE ID	Title	Severity	Score	Days	Patch
CVE-2016-7575	Apache Log4Shell	N/A	-	3582d	Unpatched
CVE-2015-3591	Apache Log4j Remote Code Execution Vulnerability	N/A	-	3583d	Unpatched
CVE-2015-3825	Unpatched Java Logging Library Vulnerability	N/A	-	3590d	Unpatched
CVE-2016-0716	Apache HTTP Server Remote File Inclusion Vulnerability	N/A	-	3590d	Unpatched
CVE-2016-0717	Apache HTTP Server Remote File Inclusion Vulnerability	N/A	-	3590d	Unpatched
CVE-2015-2302	Apache HTTP Server Remote Code Execution Vulnerability	N/A	-	3603d	Unpatched
CVE-2016-3197	Apache Log4j Remote Code Execution Vulnerability	N/A	-	3610d	Unpatched
CVE-2015-8581	Apache Log4j Remote Code Execution Vulnerability	N/A	-	3654d	Unpatched
CVE-2015-5275	Apache JMeter	N/A	-	3677d	Unpatched
CVE-2015-5226	CVE-2015-5226 - "Unbound" Vulnerability	N/A	-	3749d	Unpatched