Maven Package Vulnerabilities

All 3,052 Java / JVM artifacts with known CVEs, ranked by live CVE volume — 7,822 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.

  1. 1,701.io.jooby:jooby-netty1 CVE
  2. 1,702.io.jooby:jooby-pac4j1 CVE
  3. 1,703.io.jstach:jstachio1 CVE
  4. 1,704.io.kroxylicious:kroxylicious-runtime1 CVE
  5. 1,705.io.ktor:ktor-client-cio1 CVE
  6. 1,706.io.ktor:ktor-client-core1 CVE
  7. 1,707.io.ktor:ktor-client-core-jvm1 CVE
  8. 1,708.io.ktor:ktor-server-cio1 CVE
  9. 1,709.io.loader:loaderio-jenkins-plugin1 CVE
  10. 1,710.io.metersphere:metersphere1 CVE
  11. 1,711.io.micronaut:micronaut-context1 CVE
  12. 1,712.io.micronaut:micronaut-http1 CVE
  13. 1,713.io.micronaut:micronaut-http-client1 CVE
  14. 1,714.io.micronaut:micronaut-http-server1 CVE
  15. 1,715.io.micronaut:micronaut-http-server-tck1 CVE
  16. 1,716.io.micronaut:micronaut-inject1 CVE
  17. 1,717.io.micronaut.security:micronaut-security-oauth21 CVE
  18. 1,718.io.minio:minio1 CVE
  19. 1,719.io.netty.incubator:netty-incubator-codec-bhttp1 CVE
  20. 1,720.io.netty.incubator:netty-incubator-codec-ohttp-hpke-native-boringssl1 CVE
  21. 1,721.io.netty.incubator:netty-incubator-codec-quic1 CVE
  22. 1,722.io.netty:netty-codec-dns1 CVE
  23. 1,723.io.netty:netty-codec-mqtt1 CVE
  24. 1,724.io.netty:netty-codec-smtp1 CVE
  25. 1,725.io.netty:netty-handler-proxy1 CVE
  26. 1,726.io.netty:netty-parent1 CVE
  27. 1,727.io.netty:netty-transport-native-kqueue1 CVE
  28. 1,728.io.netty:netty-transport-sctp1 CVE
  29. 1,729.io.opentelemetry.javaagent:opentelemetry-javaagent1 CVE
  30. 1,730.io.opentelemetry:opentelemetry-api1 CVE
  31. 1,731.io.opentelemetry:opentelemetry-extension-trace-propagators1 CVE
  32. 1,732.io.pebbletemplates:pebble-project1 CVE
  33. 1,733.io.pivotal.spring.cloud:spring-cloud-sso-connector1 CVE
  34. 1,734.io.prestosql:presto-server1 CVE
  35. 1,735.io.projectreactor.netty:reactor-netty1 CVE
  36. 1,736.io.projectreactor.netty:reactor-netty-core1 CVE
  37. 1,737.io.prometheus.jmx:jmx_prometheus_httpserver1 CVE
  38. 1,738.io.prometheus.jmx:jmx_prometheus_httpserver_java61 CVE
  39. 1,739.io.qameta.allure:allure-commandline1 CVE
  40. 1,740.io.qameta.allure.plugins:junit-xml-plugin1 CVE
  41. 1,741.io.qameta.allure.plugins:trx-plugin1 CVE
  42. 1,742.io.qameta.allure.plugins:xunit-xml-plugin1 CVE
  43. 1,743.io.quarkiverse.cxf:quarkus-cxf1 CVE
  44. 1,744.io.quarkus.http:quarkus-http-core1 CVE
  45. 1,745.io.quarkus:quarkus-cache1 CVE
  46. 1,746.io.quarkus:quarkus-core-parent1 CVE
  47. 1,747.io.quarkus:quarkus-csrf-reactive1 CVE
  48. 1,748.io.quarkus:quarkus-keycloak-authorization1 CVE
  49. 1,749.io.quarkus:quarkus-kubernetes-deployment1 CVE
  50. 1,750.io.quarkus:quarkus-oidc1 CVE

Which Maven packages run in YOUR stack?

EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.

Start Free Scan →