Apache

Security Scorecard

Score

9F

Total CVEs

943

Patch Rate

6%

55 patched

Avg Response

459d

days to patch

Critical Gaps

21

exploitable, no detection

Severity Breakdown

Critical4

High19

Medium67

Low0

Patch Status

Patched55 (6%)

Partial/Workaround5 (1%)

Unpatched883 (94%)

CVEs (949)

CVE ID	Title	Severity	Score	Days	Patch
CVE-2012-6315	Unpatched Java Logging Library Vulnerability	N/A	-	4710d	Unpatched
CVE-2012-5595	CVE-2012-5595	N/A	-	4759d	Unpatched
CVE-2012-5602	Uninitialized Pointer Dereference in libxml2	N/A	-	4759d	Unpatched
CVE-2012-5599	Uninitialized Pointer Dereference in libxml2	N/A	-	4759d	Unpatched
CVE-2012-3977	Uninitialized Pointer Dereference in libxml2	N/A	-	4816d	Unpatched
CVE-2012-5311	Apache Log4Shell Vulnerability	N/A	-	4817d	Unpatched
CVE-2012-5239	CVE-2012-5239 (Apache POODLE)	N/A	-	4822d	Unpatched
CVE-2012-3539	Zero-Day RCE in Apache Nutch	N/A	-	4858d	Unpatched
CVE-2012-3801	Zero-Day RCE in a Legacy Java Library	N/A	-	4920d	Unpatched
CVE-2012-2347	Apache HTTP Server Remote File Inclusion Vulnerability	N/A	-	4957d	Unpatched