| CARVIEW |
Select Language
HTTP/2 301
server: Apache
location: https://security.apache.org/projects/
content-type: text/html; charset=iso-8859-1
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
age: 0
date: Thu, 25 Dec 2025 14:46:43 GMT
x-served-by: cache-hel1410029-HEL, cache-bom-vanm7210095-BOM
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1766674003.642405,VS0,VE402
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 245
HTTP/2 200
server: Apache
last-modified: Wed, 17 Dec 2025 10:13:25 GMT
etag: "66ec-646231849ab91-gzip"
content-encoding: gzip
access-control-allow-origin: *
content-security-policy: default-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' https://www.apachecon.com/ https://www.communityovercode.org/ https://*.apache.org/ https://apache.org/ https://*.scarf.sh/ ; script-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' https://www.apachecon.com/ https://www.communityovercode.org/ https://*.apache.org/ https://apache.org/ https://*.scarf.sh/ ; style-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' https://www.apachecon.com/ https://www.communityovercode.org/ https://*.apache.org/ https://apache.org/ https://*.scarf.sh/ ; frame-ancestors 'self'; frame-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' https://www.apachecon.com/ https://www.communityovercode.org/ https://*.apache.org/ https://apache.org/ https://*.scarf.sh/ ; worker-src 'self' data: blob:;
content-type: text/html
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
age: 1634
date: Thu, 25 Dec 2025 14:46:43 GMT
x-served-by: cache-hel1410023-HEL, cache-bom-vanm7210095-BOM
x-cache: HIT, HIT
x-cache-hits: 7, 0
x-timer: S1766674003.062031,VS0,VE145
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 3662
Apache Project Security Information
Apache Project Security Information
Security information for individual Apache projects
Here is a list of pages ASF projects maintain to provide information on known security vulnerabilities. Each entry also has the security contact for reporting new vulnerabilities related to that project. Note that not all project security teams have a dedicated address for reporting new vulnerabilities.
To report a vulnerability in an Apache project that is not listed below, contact the Apache Security Team.