Maven Package Vulnerabilities

All 3,042 Java / JVM artifacts with known CVEs, ranked by live CVE volume — 7,788 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.

  1. 451.com.liferay:com.liferay.frontend.editor.ckeditor.web3 CVEs
  2. 452.com.liferay:com.liferay.layout.admin.web3 CVEs
  3. 453.com.liferay:com.liferay.login.web3 CVEs
  4. 454.com.liferay:com.liferay.object.service3 CVEs
  5. 455.com.liferay:com.liferay.users.admin.web3 CVEs
  6. 456.com.linecorp.armeria:armeria3 CVEs
  7. 457.com.mchange:c3p03 CVEs
  8. 458.com.mikesamuel:json-sanitizer3 CVEs
  9. 459.com.moded.extendedchoiceparameter:dynamic_extended_choice_parameter3 CVEs
  10. 460.commons-beanutils:commons-beanutils3 CVEs
  11. 461.com.oviva.telematik:epa4all-client3 CVEs
  12. 462.com.reposilite:reposilite-backend3 CVEs
  13. 463.com.soasta.jenkins:cloudtest3 CVEs
  14. 464.com.xebialabs.ci:xlrelease-plugin3 CVEs
  15. 465.de.themoep:inventorygui3 CVEs
  16. 466.de.tracetronic.jenkins.plugins:ecutest3 CVEs
  17. 467.de.tum.in.ase:artemis-java-test-sandbox3 CVEs
  18. 468.edu.internet2.middleware:shibboleth-identityprovider3 CVEs
  19. 469.fr.edf.jenkins.plugins:mac3 CVEs
  20. 470.io.antmedia:ant-media-server3 CVEs
  21. 471.io.crate:crate3 CVEs
  22. 472.io.grpc:grpc-protobuf3 CVEs
  23. 473.io.jenkins.docker:docker-plugin3 CVEs
  24. 474.io.jenkins.plugins:atlassian-bitbucket-server-integration3 CVEs
  25. 475.io.jenkins.plugins:code-coverage-api3 CVEs
  26. 476.io.jenkins.plugins:gitlab-branch-source3 CVEs
  27. 477.io.netty.incubator:netty-incubator-codec-ohttp3 CVEs
  28. 478.io.netty:netty-codec-haproxy3 CVEs
  29. 479.io.netty:netty-codec-http33 CVEs
  30. 480.io.netty:netty-resolver-dns3 CVEs
  31. 481.io.ratpack:ratpack-session3 CVEs
  32. 482.net.bull.javamelody:javamelody-core3 CVEs
  33. 483.net.lingala.zip4j:zip4j3 CVEs
  34. 484.net.praqma:rqm-plugin3 CVEs
  35. 485.org.apache.activemq:activemq-core3 CVEs
  36. 486.org.apache.activemq:activemq-web-console3 CVEs
  37. 487.org.apache.activemq:artemis-server3 CVEs
  38. 488.org.apache.archiva:archiva-common3 CVEs
  39. 489.org.apache.axis2:axis23 CVEs
  40. 490.org.apache.cxf:cxf-rt-transports-http3 CVEs
  41. 491.org.apache.cxf.fediz:fediz-spring3 CVEs
  42. 492.org.apache.flume.flume-ng-sources:flume-jms-source3 CVEs
  43. 493.org.apache.geronimo.plugins:console3 CVEs
  44. 494.org.apache.hive:hive-jdbc3 CVEs
  45. 495.org.apache.inlong:inlong-manager3 CVEs
  46. 496.org.apache.inlong:manager-common3 CVEs
  47. 497.org.apache.iotdb:iotdb-core3 CVEs
  48. 498.org.apache.ivy:ivy3 CVEs
  49. 499.org.apache.jackrabbit:jackrabbit-core3 CVEs
  50. 500.org.apache.jmeter:ApacheJMeter3 CVEs

Which Maven packages run in YOUR stack?

EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.

Start Free Scan →