Maven Package Vulnerabilities
All 3,053 Java / JVM artifacts with known CVEs, ranked by live CVE volume — 7,831 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.
- 2,101.org.apache.qpid:qpid-broker-plugins-amqp-1-0-protocol1 CVE
- 2,102.org.apache.qpid:qpid-client1 CVE
- 2,103.org.apache.qpid:qpid-jms-client1 CVE
- 2,104.org.apache.qpid:qpid-parent1 CVE
- 2,105.org.apache.ranger:ranger-hive-plugin1 CVE
- 2,106.org.apache.ranger:ranger-plugins-common1 CVE
- 2,107.org.apache.ranger:security-admin-web1 CVE
- 2,108.org.apache.rave:rave-core1 CVE
- 2,109.org.apache.rave:rave-portal-resources1 CVE
- 2,110.org.apache.rave:rave-web1 CVE
- 2,111.org.apache.rocketmq:rocketmq-all1 CVE
- 2,112.org.apache.rocketmq:rocketmq-controller1 CVE
- 2,113.org.apache.seata:seata-core1 CVE
- 2,114.org.apache.seata:seata-parent1 CVE
- 2,115.org.apache.seata:seata-serializer-fury1 CVE
- 2,116.org.apache.seatunnel:seatunnel1 CVE
- 2,117.org.apache.seatunnel:seatunnel-engine-common1 CVE
- 2,118.org.apache.seatunnel:seatunnel-engine-server1 CVE
- 2,119.org.apache.seatunnel:seatunnel-web1 CVE
- 2,120.org.apache.sentry:sentry1 CVE
- 2,121.org.apache.servicecomb:java-chassis1 CVE
- 2,122.org.apache.servicemix.bundles:org.apache.servicemix.bundles.collections-generic1 CVE
- 2,123.org.apache.servicemix.bundles:org.apache.servicemix.bundles.commons-collections1 CVE
- 2,124.org.apache.servicemix.bundles:org.apache.servicemix.bundles.commons-io1 CVE
- 2,125.org.apache.shardingsphere:shardingsphere-proxy1 CVE
- 2,126.org.apache.shenyu:shenyu1 CVE
- 2,127.org.apache.shenyu:shenyu-bootstrap1 CVE
- 2,128.org.apache.shindig:shindig-php1 CVE
- 2,129.org.apache.shiro:shiro-all1 CVE
- 2,130.org.apache.shiro:shiro-spring-boot-starter1 CVE
- 2,131.org.apache.sis.core:sis-metadata1 CVE
- 2,132.org.apache.skywalking:apm-webapp1 CVE
- 2,133.org.apache.skywalking:oap-server1 CVE
- 2,134.org.apache.skywalking:server-core1 CVE
- 2,135.org.apache.sling:org.apache.sling.commons.json1 CVE
- 2,136.org.apache.sling:org.apache.sling.commons.log1 CVE
- 2,137.org.apache.sling:org.apache.sling.commons.messaging.mail1 CVE
- 2,138.org.apache.sling:org.apache.sling.engine1 CVE
- 2,139.org.apache.sling:org.apache.sling.i18n1 CVE
- 2,140.org.apache.sling:org.apache.sling.jcr.base1 CVE
- 2,141.org.apache.sling:org.apache.sling.jcr.contentloader1 CVE
- 2,142.org.apache.sling:org.apache.sling.resourcemerger1 CVE
- 2,143.org.apache.sling:org.apache.sling.servlets.resolver1 CVE
- 2,144.org.apache.solr:solr-solrj-streaming1 CVE
- 2,145.org.apache.spark:spark-core1 CVE
- 2,146.org.apache.spark:spark-core_2.9.31 CVE
- 2,147.org.apache.spark:spark-hive-thriftserver_2.111 CVE
- 2,148.org.apache.spark:spark-hive-thriftserver_2.121 CVE
- 2,149.org.apache.spark:spark-network-common_2.121 CVE
- 2,150.org.apache.spark:spark-network-common_2.131 CVE
Which Maven packages run in YOUR stack?
EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.
Start Free Scan →