Maven Package Vulnerabilities

All 3,053 Java / JVM artifacts with known CVEs, ranked by live CVE volume — 7,831 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.

  1. 2,051.org.apache.myfaces.trinidad:trinidad1 CVE
  2. 2,052.org.apache.nifi:nifi-asana-processors1 CVE
  3. 2,053.org.apache.nifi:nifi-ccda-processors1 CVE
  4. 2,054.org.apache.nifi:nifi-cdc-mysql-bundle1 CVE
  5. 2,055.org.apache.nifi:nifi-dbcp-service1 CVE
  6. 2,056.org.apache.nifi:nifi-dbcp-service-api1 CVE
  7. 2,057.org.apache.nifi:nifi-dbcp-service-bundle1 CVE
  8. 2,058.org.apache.nifi:nifi-dbcp-service-nar1 CVE
  9. 2,059.org.apache.nifi:nifi-framework-cluster1 CVE
  10. 2,060.org.apache.nifi:nifi-framework-cluster-protocol1 CVE
  11. 2,061.org.apache.nifi:nifi-hadoop-dbcp-service1 CVE
  12. 2,062.org.apache.nifi:nifi-hbase_2-client-service1 CVE
  13. 2,063.org.apache.nifi:nifi-jolt-transform-json-ui1 CVE
  14. 2,064.org.apache.nifi:nifi-mongodb-services1 CVE
  15. 2,065.org.apache.nifi:nifi-other-graph-services-nar1 CVE
  16. 2,066.org.apache.nifi:nifi-parameter1 CVE
  17. 2,067.org.apache.nifi:nifi-record-serialization-services1 CVE
  18. 2,068.org.apache.nifi:nifi-security1 CVE
  19. 2,069.org.apache.nifi:nifi-security-utils1 CVE
  20. 2,070.org.apache.nifi:nifi-single-user-utils1 CVE
  21. 2,071.org.apache.nifi:nifi-stateless1 CVE
  22. 2,072.org.apache.nifi:nifi-web-security1 CVE
  23. 2,073.org.apache.nifi.registry:nifi-registry-core1 CVE
  24. 2,074.org.apache.nifi.registry:nifi-registry-web-api1 CVE
  25. 2,075.org.apache.nutch:nutch1 CVE
  26. 2,076.org.apache.ode:ode1 CVE
  27. 2,077.org.apache.olingo:odata-client-proxy1 CVE
  28. 2,078.org.apache.olingo:odata-server-core1 CVE
  29. 2,079.org.apache.openjpa:openjpa1 CVE
  30. 2,080.org.apache.openmeetings:openmeetings-db1 CVE
  31. 2,081.org.apache.openmeetings:openmeetings-install1 CVE
  32. 2,082.org.apache.orc:orc1 CVE
  33. 2,083.org.apache.ozone:ozone1 CVE
  34. 2,084.org.apache.parquet:parquet1 CVE
  35. 2,085.org.apache.pdfbox:pdfbox-examples1 CVE
  36. 2,086.org.apache.pekko:pekko-management_2.121 CVE
  37. 2,087.org.apache.pekko:pekko-management_2.131 CVE
  38. 2,088.org.apache.pekko:pekko-management_31 CVE
  39. 2,089.org.apache.pinot:pinot-broker1 CVE
  40. 2,090.org.apache.pinot:pinot-common1 CVE
  41. 2,091.org.apache.poi:poi-examples1 CVE
  42. 2,092.org.apache.poi:poi-ooxml1 CVE
  43. 2,093.org.apache.portals.pluto:chatRoomDemo1 CVE
  44. 2,094.org.apache.portals.pluto:pluto-container1 CVE
  45. 2,095.org.apache.pulsar:pulsar-broker-auth-sasl1 CVE
  46. 2,096.org.apache.pulsar:pulsar-client1 CVE
  47. 2,097.org.apache.pulsar:pulsar-io-kafka1 CVE
  48. 2,098.org.apache.pulsar:pulsar-io-kafka-connect-adaptor1 CVE
  49. 2,099.org.apache.pulsar:pulsar-websocket1 CVE
  50. 2,100.org.apache.qpid:qpid-broker-plugins-amqp-0-8-protocol1 CVE

Which Maven packages run in YOUR stack?

EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.

Start Free Scan →