Maven Package Vulnerabilities

All 3,052 Java / JVM artifacts with known CVEs, ranked by live CVE volume — 7,822 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.

  1. 1,601.dev.dsf:dsf-fhir-server1 CVE
  2. 1,602.dev.langchain4j:langchain4j-mariadb1 CVE
  3. 1,603.dev.langchain4j:langchain4j-pgvector1 CVE
  4. 1,604.dnsjava:dnsjava1 CVE
  5. 1,605.edu.gemini:gsp-graphql-core_2.131 CVE
  6. 1,606.edu.gemini:gsp-graphql-core_31 CVE
  7. 1,607.edu.gemini:gsp-graphql-core_native0.4_2.131 CVE
  8. 1,608.edu.gemini:gsp-graphql-core_native0.4_31 CVE
  9. 1,609.edu.gemini:gsp-graphql-core_sjs1_2.131 CVE
  10. 1,610.edu.gemini:gsp-graphql-core_sjs1_31 CVE
  11. 1,611.edu.stanford.nlp:stanford-parser1 CVE
  12. 1,612.edu.vt.middleware:vt-ldap1 CVE
  13. 1,613.egor-n:fabric-beta-publisher1 CVE
  14. 1,614.eu.hinsch:spring-boot-actuator-logview1 CVE
  15. 1,615.fish.payara.api:payara-bom1 CVE
  16. 1,616.fish.payara.distributions:payara1 CVE
  17. 1,617.fish.payara.server:payara-aggregator1 CVE
  18. 1,618.fr.opensagres.xdocreport:fr.opensagres.xdocreport.document1 CVE
  19. 1,619.fr.opensagres.xdocreport:fr.opensagres.xdocreport.template.freemarker1 CVE
  20. 1,620.fr.turri:aXMLRPC1 CVE
  21. 1,621.geronimo:geronimo-console-standard1 CVE
  22. 1,622.gg.jte:jte1 CVE
  23. 1,623.gg.jte:jte-runtime1 CVE
  24. 1,624.hudson.plugins.filesystem_scm:filesystem_scm1 CVE
  25. 1,625.hudson.plugins.klaros:klaros-testmanagement1 CVE
  26. 1,626.hudson.plugins.sctmexecutor:SCTMExecutor1 CVE
  27. 1,627.hudson.plugins:starteam1 CVE
  28. 1,628.igalg.jenkins.plugins:multibranch-scan-webhook-trigger1 CVE
  29. 1,629.info.bluefloyd.jenkins:jenkins-jira-issue-updater1 CVE
  30. 1,630.io.airlift:aircompressor-v31 CVE
  31. 1,631.io.arrow-kt:arrow-ank-gradle1 CVE
  32. 1,632.io.awspring.cloud:spring-cloud-aws-sns1 CVE
  33. 1,633.io.debezium:debezium-connector-mysql1 CVE
  34. 1,634.io.debezium:debezium-connector-sqlserver1 CVE
  35. 1,635.io.debezium:debezium-core1 CVE
  36. 1,636.io.digdag:digdag-server1 CVE
  37. 1,637.io.fabric8:fabric8-maven-plugin1 CVE
  38. 1,638.io.fabric8.pipeline:kubernetes-pipeline-arquillian-steps1 CVE
  39. 1,639.io.fabric8.pipeline:kubernetes-pipeline-steps1 CVE
  40. 1,640.io.fusionauth:fusionauth-java-client1 CVE
  41. 1,641.io.github.1tchy.java9modular.org.apache.commons:commons-compress1 CVE
  42. 1,642.io.github.bonigarcia:webdrivermanager1 CVE
  43. 1,643.io.github.classgraph:classgraph1 CVE
  44. 1,644.io.github.davidalmeidac:sealed-env-core1 CVE
  45. 1,645.io.github.javaezlib:JavaEZ1 CVE
  46. 1,646.io.github.karlatemp:unsafe-accessor1 CVE
  47. 1,647.io.github.microcks:microcks1 CVE
  48. 1,648.io.github.microcks:microcks-app1 CVE
  49. 1,649.io.github.ndsev:zserio-runtime1 CVE
  50. 1,650.io.github.openfeign.querydsl:querydsl-apt1 CVE

Which Maven packages run in YOUR stack?

EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.

Start Free Scan →