Maven Package Vulnerabilities

All 3,041 Java / JVM artifacts with known CVEs, ranked by live CVE volume — 7,785 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.

  1. 101.org.jenkins-ci.plugins:electricflow9 CVEs
  2. 102.org.keycloak:keycloak-quarkus-server9 CVEs
  3. 103.org.opencrx:opencrx-core-models9 CVEs
  4. 104.org.opennms:opennms9 CVEs
  5. 105.org.postgresql:postgresql9 CVEs
  6. 106.org.silverpeas.core:silverpeas-core-web9 CVEs
  7. 107.ca.uhn.hapi.fhir:org.hl7.fhir.utilities8 CVEs
  8. 108.ch.qos.logback:logback-core8 CVEs
  9. 109.com.ruoyi:ruoyi8 CVEs
  10. 110.io.jenkins.blueocean:blueocean8 CVEs
  11. 111.io.netty:netty-codec-http28 CVEs
  12. 112.org.apache.activemq:activemq-all8 CVEs
  13. 113.org.apache.ambari:ambari8 CVEs
  14. 114.org.apache.druid:druid8 CVEs
  15. 115.org.apache.hive:hive-service8 CVEs
  16. 116.org.apache.ozone:ozone-main8 CVEs
  17. 117.org.apache.pdfbox:pdfbox8 CVEs
  18. 118.org.apache.santuario:xmlsec8 CVEs
  19. 119.org.apache.spark:spark-core_2.108 CVEs
  20. 120.org.apache.wicket:wicket-core8 CVEs
  21. 121.org.apache.zeppelin:zeppelin8 CVEs
  22. 122.org.geoserver:gs-wms8 CVEs
  23. 123.org.jeecgframework.boot:jeecg-boot-common8 CVEs
  24. 124.org.jenkins-ci.plugins:ec28 CVEs
  25. 125.org.jenkins-ci.plugins:oic-auth8 CVEs
  26. 126.org.jenkins-ci.plugins:subversion8 CVEs
  27. 127.org.webjars.npm:jquery8 CVEs
  28. 128.org.yaml:snakeyaml8 CVEs
  29. 129.ca.uhn.hapi.fhir:org.hl7.fhir.r4b7 CVEs
  30. 130.ca.uhn.hapi.fhir:org.hl7.fhir.r57 CVEs
  31. 131.ca.uhn.hapi.fhir:org.hl7.fhir.validation7 CVEs
  32. 132.com.hazelcast:hazelcast7 CVEs
  33. 133.commons-fileupload:commons-fileupload7 CVEs
  34. 134.com.xuxueli:xxl-job-admin7 CVEs
  35. 135.io.atomix:atomix7 CVEs
  36. 136.io.dataease:dataease-plugin-common7 CVEs
  37. 137.io.jenkins.plugins:cavisson-ns-nd-integration7 CVEs
  38. 138.io.jenkins.plugins:miniorange-saml-sp7 CVEs
  39. 139.io.jenkins.plugins:warnings-ng7 CVEs
  40. 140.io.vertx:vertx-core7 CVEs
  41. 141.io.vertx:vertx-web7 CVEs
  42. 142.net.gleske:jervis7 CVEs
  43. 143.net.opentsdb:opentsdb7 CVEs
  44. 144.org.apache.activemq:activemq-parent7 CVEs
  45. 145.org.apache.atlas:atlas-common7 CVEs
  46. 146.org.apache.axis:axis7 CVEs
  47. 147.org.apache.cxf:apache-cxf7 CVEs
  48. 148.org.apache.derby:derby7 CVEs
  49. 149.org.apache.inlong:manager-web7 CVEs
  50. 150.org.apache.kafka:kafka-clients7 CVEs

Which Maven packages run in YOUR stack?

EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.

Start Free Scan →