Apache
Security Scorecard
Score
13F
Total CVEs
1,021
Patch Rate
13%
129 patched
Avg Response
521d
days to patch
Critical Gaps
20
exploitable, no detection
Severity Breakdown
Critical10
High58
Medium100
Low0
Patch Status
Patched129 (13%)
Partial/Workaround2 (0%)
Unpatched890 (87%)
CVEs (1,029)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2025-27522 | Apache InLong Deserialization Bypass | Medium | 6.5 | - | Patched |
| CVE-2025-31177 | GNUPLOT BUFFER OVERFLOW | Medium | 5.5 | - | Patched |
| CVE-2025-3760 | - | Medium | 5.4 | 243d | Patched |
| CVE-2025-25468 | FFmpeg Memory Leak Vulnerability | Medium | 6.5 | - | Patched |
| CVE-2025-23184 | - | Medium | 5.9 | 328d | Patched |
| CVE-2024-10397 | - | High | 7.8 | 404d | Unpatched |
| CVE-2024-7885 | Undertow ProxyProtocolReadListener Reuse Vulnerability | High | 7.5 | 516d | Unpatched |
| CVE-2024-36856 | RMQTT Broker Denial of Service | High | 7.5 | - | Patched |
| CVE-2024-24115 | Cotonti CMS XSS Vulnerability | Medium | 5.4 | - | Patched |
| CVE-2023-31007 | - | None | 0.0 | 886d | Patched |