Maven Package Vulnerabilities
All 3,043 Java / JVM artifacts with known CVEs, ranked by live CVE volume — 7,793 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.
- 651.com.alipay.sofa:hessian2 CVEs
- 652.com.amazonaws:aws-encryption-sdk-java2 CVEs
- 653.com.amazonaws:codedeploy2 CVEs
- 654.com.apica:ApicaLoadtest2 CVEs
- 655.com.barchart.jenkins:maven-release-cascade2 CVEs
- 656.com.blazemeter.plugins:BlazeMeterJenkinsPlugin2 CVEs
- 657.com.bstek.ureport:ureport2-console2 CVEs
- 658.com.cedarpolicy:cedar-java2 CVEs
- 659.com.charleskorn.kaml:kaml2 CVEs
- 660.com.compuware.jenkins:compuware-ispw-operations2 CVEs
- 661.com.compuware.jenkins:compuware-scm-downloader2 CVEs
- 662.com.compuware.jenkins:compuware-topaz-utilities2 CVEs
- 663.com.compuware.jenkins:compuware-xpediter-code-coverage2 CVEs
- 664.com.cronutils:cron-utils2 CVEs
- 665.com.drewnoakes:metadata-extractor2 CVEs
- 666.com.erudika:para-core2 CVEs
- 667.com.erudika:para-server2 CVEs
- 668.com.esotericsoftware.yamlbeans:yamlbeans2 CVEs
- 669.com.fasterxml.jackson.core:jackson-core2 CVEs
- 670.com.fasterxml.jackson.dataformat:jackson-dataformat-xml2 CVEs
- 671.com.gitblit:gitblit2 CVEs
- 672.com.github.liuyueyi.media:batik-codec-fix2 CVEs
- 673.com.github.psi-probe:psi-probe-core2 CVEs
- 674.com.googlecode.wicket-jquery-ui:wicket-jquery-ui-parent2 CVEs
- 675.com.google.oauth-client:google-oauth-client2 CVEs
- 676.com.google.protobuf:protobuf-kotlin-lite2 CVEs
- 677.com.inflectra.spiratest.plugins:inflectra-spira-integration2 CVEs
- 678.com.itextpdf:itextpdf2 CVEs
- 679.com.liferay:com.liferay.adaptive.media.web2 CVEs
- 680.com.liferay:com.liferay.asset.taglib2 CVEs
- 681.com.liferay:com.liferay.document.library.web2 CVEs
- 682.com.liferay:com.liferay.frontend.js.web2 CVEs
- 683.com.liferay:com.liferay.frontend.taglib2 CVEs
- 684.com.liferay:com.liferay.journal.web2 CVEs
- 685.com.liferay:com.liferay.layout.impl2 CVEs
- 686.com.liferay:com.liferay.layout.taglib2 CVEs
- 687.com.liferay:com.liferay.object.web2 CVEs
- 688.com.liferay:com.liferay.organizations.item.selector.web2 CVEs
- 689.com.liferay:com.liferay.portal.security.ldap.impl2 CVEs
- 690.com.liferay:com.liferay.portal.workflow.kaleo.designer.web2 CVEs
- 691.com.liferay:com.liferay.portal.workflow.kaleo.forms.web2 CVEs
- 692.com.liferay:com.liferay.server.admin.web2 CVEs
- 693.com.liferay:com.liferay.site.admin.web2 CVEs
- 694.com.liferay:com.liferay.translation.web2 CVEs
- 695.com.liferay.portal:com.liferay.util.java2 CVEs
- 696.com.liferay.portal:portal-impl2 CVEs
- 697.com.liferay.portal:portal-service2 CVEs
- 698.com.meowlomo.jenkins:scm-httpclient2 CVEs
- 699.commons-io:commons-io2 CVEs
- 700.com.nepxion:discovery2 CVEs
Which Maven packages run in YOUR stack?
EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.
Start Free Scan →