Spark
by Apache
Standard maintenance is sufficient
Spark has low exploitation rates. Attackers rarely target this software's known vulnerabilities.
What to do
- Keep automatic updates enabled
- No urgent action needed
- Review periodically as part of normal maintenance
What Attackers Target
Vulnerabilities with high exploit probability
27.3%
Confirmed actively exploited (CISA)
4.5%
Public exploit code available
0.0%
Based on 22 known vulnerabilities. Percentages show the proportion that are actively dangerous — a low percentage means most vulnerabilities in this product are not being exploited.
Most Dangerous Vulnerabilities
| CVE | CVSS | Exploit Probability | Confirmed |
|---|---|---|---|
| CVE-2022-33891 | 8.8 | 93.5% | Yes |
| CVE-2023-32007 | 8.8 | 92.2% | — |
| CVE-2020-9480 | 9.8 | 90.6% | — |
| CVE-2018-11770 | 4.2 | 89.0% | — |
| CVE-2018-8024 | 5.4 | 50.2% | — |
| CVE-2020-27223 | 5.2 | 33.8% | — |
| CVE-2024-23945 | 5.9 | 6.5% | — |
| CVE-2019-20445 | 9.1 | 2.8% | — |
| CVE-2017-7678 | 6.1 | 1.8% | — |
| CVE-2018-17190 | 9.8 | 1.2% | — |
| CVE-2021-38296 | 7.5 | 0.9% | — |
| CVE-2018-11804 | 7.5 | 0.7% | — |
| CVE-2025-54920 | 8.8 | 0.7% | — |
| CVE-2020-27218 | 4.8 | 0.6% | — |
| CVE-2019-10172 | 7.5 | 0.6% | — |
| CVE-2019-10099 | 7.5 | 0.5% | — |
| CVE-2018-11760 | 5.5 | 0.5% | — |
| CVE-2023-22946 | 6.4 | 0.4% | — |
| CVE-2017-12612 | 7.8 | 0.1% | — |
| CVE-2022-31777 | 5.4 | 0.1% | — |
27
/ 100
low-risk
Active Threat
26/50 · Moderate
Exploit Availability
1/50 · Minimal
Score uses Wilson score intervals to account for sample size. Products with few CVEs are scored conservatively.