Http Server
by Apache
Take action — actively targeted
Http Server is actively targeted by attackers. A significant proportion of its known vulnerabilities are being exploited.
What to do
- Apply all available updates immediately
- Review your exposure — is this internet-facing?
- Monitor vendor advisories for this product
What Attackers Target
Vulnerabilities with high exploit probability
52.8%
Confirmed actively exploited (CISA)
4.0%
Public exploit code available
6.4%
Based on 125 known vulnerabilities. Percentages show the proportion that are actively dangerous — a low percentage means most vulnerabilities in this product are not being exploited.
Most Dangerous Vulnerabilities
| CVE | CVSS | Exploit Probability | Confirmed |
|---|---|---|---|
| CVE-2021-40438 | 9.0 | 94.4% | Yes |
| CVE-2021-42013 | 9.8 | 94.4% | Yes |
| CVE-2021-41773 | 9.8 | 94.4% | Yes |
| CVE-2017-15715 | 8.1 | 94.1% | — |
| CVE-2024-38475 | 9.1 | 93.9% | Yes |
| CVE-2017-9798 | 7.5 | 93.8% | — |
| CVE-2019-0211 | 7.8 | 90.9% | Yes |
| CVE-2024-38472 | 7.5 | 90.5% | — |
| CVE-2024-27316 | 7.5 | 89.4% | — |
| CVE-2024-38473 | 8.1 | 88.3% | — |
| CVE-2021-44790 | 9.8 | 86.0% | — |
| CVE-2019-10092 | 6.1 | 82.4% | — |
| CVE-2018-8011 | 7.5 | 82.0% | — |
| CVE-2019-10098 | 6.1 | 80.3% | — |
| CVE-2020-9490 | 7.5 | 76.3% | — |
| CVE-2020-11984 | 9.8 | 75.3% | — |
| CVE-2016-4975 | 6.1 | 73.3% | — |
| CVE-2021-26690 | 7.5 | 70.4% | — |
| CVE-2016-8740 | 7.5 | 68.3% | — |
| CVE-2023-25690 | 9.8 | 68.2% | — |
57
/ 100
high-risk
Active Threat
50/50 · Critical
Exploit Availability
7/50 · Minimal
Score uses Wilson score intervals to account for sample size. Products with few CVEs are scored conservatively.