Maven Package Vulnerabilities

All 3,043 Java / JVM artifacts with known CVEs, ranked by live CVE volume — 7,789 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.

  1. 601.org.keycloak:keycloak-model-jpa3 CVEs
  2. 602.org.kohsuke.stapler:stapler-parent3 CVEs
  3. 603.org.mapfish.print:print-lib3 CVEs
  4. 604.org.mapfish.print:print-servlet3 CVEs
  5. 605.org.matrix.android:matrix-android-sdk23 CVEs
  6. 606.org.nutz:nutzboot-parent3 CVEs
  7. 607.org.opencastproject:opencast-ingest-service-impl3 CVEs
  8. 608.org.opencrx:opencrx-client3 CVEs
  9. 609.org.openidentityplatform.openam:openam-oauth23 CVEs
  10. 610.org.openrefine:openrefine3 CVEs
  11. 611.org.pf4j:pf4j3 CVEs
  12. 612.org.richfaces:richfaces-core3 CVEs
  13. 613.org.silverpeas.core:silverpeas-core-war3 CVEs
  14. 614.org.springframework.batch:spring-batch-admin-manager3 CVEs
  15. 615.org.springframework.boot:spring-boot-cassandra3 CVEs
  16. 616.org.springframework.cloud:spring-cloud-gateway3 CVEs
  17. 617.org.springframework.data:spring-data-commons3 CVEs
  18. 618.org.springframework.data:spring-data-jpa3 CVEs
  19. 619.org.springframework.data:spring-data-rest-core3 CVEs
  20. 620.org.springframework.integration:spring-integration-zip3 CVEs
  21. 621.org.springframework.kafka:spring-kafka3 CVEs
  22. 622.org.springframework:spring3 CVEs
  23. 623.org.springframework:spring-context3 CVEs
  24. 624.org.springframework:spring-messaging3 CVEs
  25. 625.org.thymeleaf:thymeleaf3 CVEs
  26. 626.org.thymeleaf:thymeleaf-spring63 CVEs
  27. 627.org.webjars.npm:xlsx3 CVEs
  28. 628.org.wildfly.core:wildfly-server3 CVEs
  29. 629.org.wso2.am:am-parent3 CVEs
  30. 630.org.wso2.carbon.registry:carbon-registry3 CVEs
  31. 631.org.xwiki.platform:xwiki-platform-icon-ui3 CVEs
  32. 632.org.xwiki.platform:xwiki-platform-invitation-ui3 CVEs
  33. 633.org.xwiki.platform:xwiki-platform-panels-ui3 CVEs
  34. 634.org.xwiki.platform:xwiki-platform-search-solr-api3 CVEs
  35. 635.org.xwiki.platform:xwiki-platform-security-requiredrights-default3 CVEs
  36. 636.ro.pippo:pippo-core3 CVEs
  37. 637.tech.powerjob:powerjob-server-starter3 CVEs
  38. 638.tools.jackson.core:jackson-databind3 CVEs
  39. 639.aendter.jenkins.plugins:filesystem-list-parameter-plugin2 CVEs
  40. 640.ai.djl:api2 CVEs
  41. 641.at.yawk.lz4:lz4-java2 CVEs
  42. 642.ch.qos.logback:logback-classic2 CVEs
  43. 643.cn.dev33:sa-token-core2 CVEs
  44. 644.cn.hippo4j:hippo4j-all2 CVEs
  45. 645.cn.hippo4j:hippo4j-core2 CVEs
  46. 646.co.fs2:fs2-io_2.122 CVEs
  47. 647.co.fs2:fs2-io_2.132 CVEs
  48. 648.co.fs2:fs2-io_32 CVEs
  49. 649.com.aizuda:snail-job2 CVEs
  50. 650.com.alauda.jenkins.plugins:alauda-devops-pipeline2 CVEs

Which Maven packages run in YOUR stack?

EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.

Start Free Scan →