Maven Package Vulnerabilities
All 3,043 Java / JVM artifacts with known CVEs, ranked by live CVE volume — 7,789 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.
- 601.org.keycloak:keycloak-model-jpa3 CVEs
- 602.org.kohsuke.stapler:stapler-parent3 CVEs
- 603.org.mapfish.print:print-lib3 CVEs
- 604.org.mapfish.print:print-servlet3 CVEs
- 605.org.matrix.android:matrix-android-sdk23 CVEs
- 606.org.nutz:nutzboot-parent3 CVEs
- 607.org.opencastproject:opencast-ingest-service-impl3 CVEs
- 608.org.opencrx:opencrx-client3 CVEs
- 609.org.openidentityplatform.openam:openam-oauth23 CVEs
- 610.org.openrefine:openrefine3 CVEs
- 611.org.pf4j:pf4j3 CVEs
- 612.org.richfaces:richfaces-core3 CVEs
- 613.org.silverpeas.core:silverpeas-core-war3 CVEs
- 614.org.springframework.batch:spring-batch-admin-manager3 CVEs
- 615.org.springframework.boot:spring-boot-cassandra3 CVEs
- 616.org.springframework.cloud:spring-cloud-gateway3 CVEs
- 617.org.springframework.data:spring-data-commons3 CVEs
- 618.org.springframework.data:spring-data-jpa3 CVEs
- 619.org.springframework.data:spring-data-rest-core3 CVEs
- 620.org.springframework.integration:spring-integration-zip3 CVEs
- 621.org.springframework.kafka:spring-kafka3 CVEs
- 622.org.springframework:spring3 CVEs
- 623.org.springframework:spring-context3 CVEs
- 624.org.springframework:spring-messaging3 CVEs
- 625.org.thymeleaf:thymeleaf3 CVEs
- 626.org.thymeleaf:thymeleaf-spring63 CVEs
- 627.org.webjars.npm:xlsx3 CVEs
- 628.org.wildfly.core:wildfly-server3 CVEs
- 629.org.wso2.am:am-parent3 CVEs
- 630.org.wso2.carbon.registry:carbon-registry3 CVEs
- 631.org.xwiki.platform:xwiki-platform-icon-ui3 CVEs
- 632.org.xwiki.platform:xwiki-platform-invitation-ui3 CVEs
- 633.org.xwiki.platform:xwiki-platform-panels-ui3 CVEs
- 634.org.xwiki.platform:xwiki-platform-search-solr-api3 CVEs
- 635.org.xwiki.platform:xwiki-platform-security-requiredrights-default3 CVEs
- 636.ro.pippo:pippo-core3 CVEs
- 637.tech.powerjob:powerjob-server-starter3 CVEs
- 638.tools.jackson.core:jackson-databind3 CVEs
- 639.aendter.jenkins.plugins:filesystem-list-parameter-plugin2 CVEs
- 640.ai.djl:api2 CVEs
- 641.at.yawk.lz4:lz4-java2 CVEs
- 642.ch.qos.logback:logback-classic2 CVEs
- 643.cn.dev33:sa-token-core2 CVEs
- 644.cn.hippo4j:hippo4j-all2 CVEs
- 645.cn.hippo4j:hippo4j-core2 CVEs
- 646.co.fs2:fs2-io_2.122 CVEs
- 647.co.fs2:fs2-io_2.132 CVEs
- 648.co.fs2:fs2-io_32 CVEs
- 649.com.aizuda:snail-job2 CVEs
- 650.com.alauda.jenkins.plugins:alauda-devops-pipeline2 CVEs
Which Maven packages run in YOUR stack?
EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.
Start Free Scan →