Apache

Security Scorecard

Score

9F

Total CVEs

943

Patch Rate

6%

55 patched

Avg Response

459d

days to patch

Critical Gaps

21

exploitable, no detection

Severity Breakdown

Critical4

High19

Medium67

Low0

Patch Status

Patched55 (6%)

Partial/Workaround5 (1%)

Unpatched883 (94%)

CVEs (949)

CVE ID	Title	Severity	Score	Days	Patch
CVE-2013-0341	Apache Log4j 2.x Remote Code Execution Vulnerability	N/A	-	4464d	Unpatched
CVE-2013-5575	Unpatched PHPMailer Vulnerability Exposes Email Headers	N/A	-	4464d	Unpatched
CVE-2013-5134	Apache Tomcat	N/A	-	4471d	Unpatched
CVE-2013-5621	Apache HTTP Server Remote File Inclusion Vulnerability	N/A	-	4473d	Unpatched
CVE-2013-5633	CVE-2013-5633 - "Apache Struts Vulnerability"	N/A	-	4473d	Unpatched
CVE-2011-1181	CVE-2011-1181 (Apache POSEidon)	N/A	-	4555d	Unpatched
CVE-2013-1873	Unpatched Java Logging Library Vulnerability	N/A	-	4652d	Unpatched
CVE-2012-6127	Apache Commons Configuration	N/A	-	4688d	Unpatched
CVE-2013-4696	Apache HTTP Server Remote File Inclusion Vulnerability	N/A	-	4705d	Unpatched
CVE-2013-0743	Apache HTTP Server Remote File Inclusion Vulnerability	N/A	-	4708d	Unpatched