Maven Package Vulnerabilities
All 3,051 Java / JVM artifacts with known CVEs, ranked by live CVE volume — 7,817 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.
- 1,301.com.github.tomakehurst:wiremock-jre8-standalone1 CVE
- 1,302.com.github.ulisesbocchio:jasypt-spring-boot1 CVE
- 1,303.com.github.ulisesbocchio:jasypt-spring-boot-starter1 CVE
- 1,304.com.github.wxpay:wxpay-sdk1 CVE
- 1,305.com.glazedlists:glazedlists1 CVE
- 1,306.com.google.android.gms:play-services-basement1 CVE
- 1,307.com.google.cloud.tools:jib-core1 CVE
- 1,308.com.googlecode.aviator:aviator1 CVE
- 1,309.com.google.code.gson:gson1 CVE
- 1,310.com.googlecode.guava-osgi:guava-osgi1 CVE
- 1,311.com.googlecode.gwtupload:gwtupload1 CVE
- 1,312.com.googlecode.plist:dd-plist1 CVE
- 1,313.com.google.crypto.tink:tink1 CVE
- 1,314.com.google.gerrit:gerrit-plugin-api1 CVE
- 1,315.com.google.guava:guava-jdk51 CVE
- 1,316.com.google.gwt:gwt1 CVE
- 1,317.com.google.protobuf:protobuf-parent1 CVE
- 1,318.com.gradle:gradle-enterprise-maven-extension1 CVE
- 1,319.com.gradle.plugin-publish:com.gradle.plugin-publish.gradle.plugin1 CVE
- 1,320.com.gradle.publish:plugin-publish-plugin1 CVE
- 1,321.com.graphhopper:graphhopper-nav1 CVE
- 1,322.com.graphhopper:graphhopper-web-bundle1 CVE
- 1,323.com.guicedee.services:commons-text1 CVE
- 1,324.com.guicedee.services:log4j-core1 CVE
- 1,325.com.haulmont.addon.jpawebapi:jpawebapi-jpawebapi1 CVE
- 1,326.com.haulmont.addon.restapi:restapi-rest-api1 CVE
- 1,327.com.haulmont.cuba:cuba-core1 CVE
- 1,328.com.haulmont.cuba:cuba-web-toolkit1 CVE
- 1,329.com.hazelcast:hazelcast-all1 CVE
- 1,330.com.hazelcast.jet:hazelcast-jet1 CVE
- 1,331.com.hazelcast.jet:hazelcast-jet-enterprise1 CVE
- 1,332.com.hccake:ballcat-codegen1 CVE
- 1,333.com.hcl.security:ibm-application-security1 CVE
- 1,334.com.helger.commons:ph-json1 CVE
- 1,335.com.hoiio.jenkins:sms1 CVE
- 1,336.com.hotels.styx:styx-api1 CVE
- 1,337.com.ibeetl:beetl-core1 CVE
- 1,338.com.ibeetl:beetl-spring-classic1 CVE
- 1,339.com.ibm.devops:ibm-cloud-devops1 CVE
- 1,340.com.incapptic.plugins:incapptic-connect-uploader1 CVE
- 1,341.com.inedo.buildmaster:inedo-buildmaster1 CVE
- 1,342.com.inkysea.vmware.vra:vmware-vrealize-automation-plugin1 CVE
- 1,343.com.instaclustr:cassandra-lucene-index-plugin1 CVE
- 1,344.com.itextpdf:itext-rups1 CVE
- 1,345.com.jamesmurty.utils:java-xmlbuilder1 CVE
- 1,346.com.jamonapi:jamon1 CVE
- 1,347.com.jason-goodwin:authentikat-jwt_2.121 CVE
- 1,348.com.jayway.jsonpath:json-path1 CVE
- 1,349.com.jcraft:jsch1 CVE
- 1,350.com.kitfox.svg:svg-salamander1 CVE
Which Maven packages run in YOUR stack?
EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.
Start Free Scan →