Maven Package Vulnerabilities
All 3,041 Java / JVM artifacts with known CVEs, ranked by live CVE volume — 7,785 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.
- 51.org.apache.cassandra:cassandra-all12 CVEs
- 52.org.apache.cxf:cxf12 CVEs
- 53.org.apache.cxf:cxf-core12 CVEs
- 54.org.apache.hadoop:hadoop-common12 CVEs
- 55.org.apache.streampark:streampark12 CVEs
- 56.org.bouncycastle:bcprov-jdk15to1812 CVEs
- 57.org.jeecgframework.boot:jeecg-boot-parent12 CVEs
- 58.org.springframework:spring-web12 CVEs
- 59.com.xuxueli:xxl-job11 CVEs
- 60.io.netty:netty-handler11 CVEs
- 61.org.apache.archiva:archiva11 CVEs
- 62.org.apache.camel:camel-core11 CVEs
- 63.org.apache.commons:commons-compress11 CVEs
- 64.org.apache.james:james-server11 CVEs
- 65.org.apache.jspwiki:jspwiki-war11 CVEs
- 66.org.apache.logging.log4j:log4j-core11 CVEs
- 67.org.apache.shiro:shiro-core11 CVEs
- 68.org.graylog2:graylog2-server11 CVEs
- 69.org.igniterealtime.openfire:parent11 CVEs
- 70.org.jenkins-ci.plugins:email-ext11 CVEs
- 71.org.mortbay.jetty:jetty11 CVEs
- 72.org.xwiki.platform:xwiki-platform-administration-ui11 CVEs
- 73.org.xwiki.platform:xwiki-platform-rest-server11 CVEs
- 74.struts:struts11 CVEs
- 75.com.sonyericsson.jenkins.plugins.bfa:build-failure-analyzer10 CVEs
- 76.com.vaadin:flow-server10 CVEs
- 77.io.netty:netty10 CVEs
- 78.org.apache.hive:hive-exec10 CVEs
- 79.org.apache.inlong:manager-service10 CVEs
- 80.org.apache.linkis:linkis10 CVEs
- 81.org.bouncycastle:bc-fips10 CVEs
- 82.org.craftercms:crafter-studio10 CVEs
- 83.org.jboss.netty:netty10 CVEs
- 84.org.jenkins-ci.plugins.workflow:workflow-cps-global-lib10 CVEs
- 85.org.springframework:spring-webflux10 CVEs
- 86.cn.hutool:hutool-core9 CVEs
- 87.com.vaadin:vaadin-bom9 CVEs
- 88.io.jenkins:configuration-as-code9 CVEs
- 89.mysql:mysql-connector-java9 CVEs
- 90.org.apache.activemq:activemq-broker9 CVEs
- 91.org.apache.activemq:apache-activemq9 CVEs
- 92.org.apache.dolphinscheduler:dolphinscheduler-api9 CVEs
- 93.org.apache.hive:hive9 CVEs
- 94.org.apache.spark:spark-core_2.119 CVEs
- 95.org.apache.tapestry:tapestry-core9 CVEs
- 96.org.apache.xmlgraphics:batik9 CVEs
- 97.org.apache.zookeeper:zookeeper9 CVEs
- 98.org.bouncycastle:bcprov-jdk18on9 CVEs
- 99.org.jenkins-ci.plugins:active-directory9 CVEs
- 100.org.jenkins-ci.plugins:config-file-provider9 CVEs
Which Maven packages run in YOUR stack?
EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.
Start Free Scan →