Maven Package Vulnerabilities

All 3,051 Java / JVM artifacts with known CVEs, ranked by live CVE volume — 7,816 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.

  1. 901.org.codehaus.mevenide:netbeans2 CVEs
  2. 902.org.codehaus.plexus:plexus-archiver2 CVEs
  3. 903.org.codelibs.fess:fess2 CVEs
  4. 904.org.continuousassurance.swamp.jenkins:swamp2 CVEs
  5. 905.org.cyclonedx:cyclonedx-core-java2 CVEs
  6. 906.org.datadog.jenkins.plugins:datadog2 CVEs
  7. 907.org.dojotoolkit:dojo2 CVEs
  8. 908.org.dom4j:dom4j2 CVEs
  9. 909.org.dspace:dspace-xmlui2 CVEs
  10. 910.org.eclipse.basyx:basyx.sdk2 CVEs
  11. 911.org.eclipse.hawkbit:hawkbit-parent2 CVEs
  12. 912.org.eclipse.jetty.ee10:jetty-ee10-servlets2 CVEs
  13. 913.org.eclipse.jetty.ee8:jetty-ee8-servlets2 CVEs
  14. 914.org.eclipse.jetty.ee9:jetty-ee9-servlets2 CVEs
  15. 915.org.eclipse.jetty.http2:http2-server2 CVEs
  16. 916.org.geoserver.extension:gs-wps-core2 CVEs
  17. 917.org.geoserver:gs-rest2 CVEs
  18. 918.org.glassfish.jsftemplating:jsftemplating2 CVEs
  19. 919.org.glassfish.main.admingui:console-cluster-plugin2 CVEs
  20. 920.org.glassfish:mojarra-parent2 CVEs
  21. 921.org.gradle:gradle-core2 CVEs
  22. 922.org.grails:grails-core2 CVEs
  23. 923.org.grails:grails-databinding2 CVEs
  24. 924.org.grails.plugins:asset-pipeline2 CVEs
  25. 925.org.graylog:graylog-parent2 CVEs
  26. 926.org.hjson:hjson2 CVEs
  27. 927.org.hl7.fhir.publisher:org.hl7.fhir.publisher.cli2 CVEs
  28. 928.org.hl7.fhir.publisher:org.hl7.fhir.publisher.core2 CVEs
  29. 929.org.hswebframework.web:hsweb-commons2 CVEs
  30. 930.org.htmlunit:htmlunit2 CVEs
  31. 931.org.http4s:http4s-core2 CVEs
  32. 932.org.http4s:http4s-server_2.102 CVEs
  33. 933.org.http4s:http4s-server_2.112 CVEs
  34. 934.org.http4s:http4s-server_2.132 CVEs
  35. 935.org.http4s:http4s-server_2.13.0-M52 CVEs
  36. 936.org.http4s:http4s-server_32 CVEs
  37. 937.org.infinispan:infinispan-server-rest2 CVEs
  38. 938.org.jboss.eap:wildfly-undertow2 CVEs
  39. 939.org.jboss:jboss-ejb-client2 CVEs
  40. 940.org.jenkins-ci.main:cli2 CVEs
  41. 941.org.jenkins-ci.main:maven-plugin2 CVEs
  42. 942.org.jenkins-ci.plugins:aqua-microscanner2 CVEs
  43. 943.org.jenkins-ci.plugins:azure-keyvault2 CVEs
  44. 944.org.jenkins-ci.plugins:badge2 CVEs
  45. 945.org.jenkins-ci.plugins:bearychat2 CVEs
  46. 946.org.jenkins-ci.plugins:bigpanda-jenkins2 CVEs
  47. 947.org.jenkins-ci.plugins:build-with-parameters2 CVEs
  48. 948.org.jenkins-ci.plugins:bumblebee2 CVEs
  49. 949.org.jenkins-ci.plugins:claim2 CVEs
  50. 950.org.jenkins-ci.plugins:cobertura2 CVEs

Which Maven packages run in YOUR stack?

EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.

Start Free Scan →