Maven Package Vulnerabilities

All 3,054 Java / JVM artifacts with known CVEs, ranked by live CVE volume — 7,833 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.

  1. 2,251.org.bouncycastle:bcprov-ext-debug-jdk18on1 CVE
  2. 2,252.org.bouncycastle:bcprov-jdk121 CVE
  3. 2,253.org.bouncycastle:bcprov-lts8on1 CVE
  4. 2,254.org.broadleafcommerce:broadleaf1 CVE
  5. 2,255.org.checkerframework.annotatedlib:commons-io1 CVE
  6. 2,256.org.codehaus.castor:castor1 CVE
  7. 2,257.org.codehaus.janino:janino-parent1 CVE
  8. 2,258.org.codehaus.xfire:xfire-core1 CVE
  9. 2,259.org.cometd.java:cometd-java-oort1 CVE
  10. 2,260.org.cometd.java:cometd-java-server-common1 CVE
  11. 2,261.org.conductoross:conductor-core1 CVE
  12. 2,262.org.craftercms:crafter-engine1 CVE
  13. 2,263.org.craftercms:crafter-search1 CVE
  14. 2,264.org.cryptacular:cryptacular1 CVE
  15. 2,265.org.deeplearning4j:dl4j-examples1 CVE
  16. 2,266.org.deeplearning4j:platform-tests1 CVE
  17. 2,267.org.dromara.warm:warm-flow-plugin-modes-sb1 CVE
  18. 2,268.org.dspace:dspace-server-webapp1 CVE
  19. 2,269.org.eclipse.angus:smtp1 CVE
  20. 2,270.org.eclipse.birt:org.eclipse.birt.report.viewer1 CVE
  21. 2,271.org.eclipse.californium:californium-core1 CVE
  22. 2,272.org.eclipse.californium:scandium1 CVE
  23. 2,273.org.eclipse.ditto:ditto1 CVE
  24. 2,274.org.eclipse.edc:connector-core1 CVE
  25. 2,275.org.eclipse.edc:transfer-data-plane1 CVE
  26. 2,276.org.eclipse.hawkbit:hawkbit-autoconfigure1 CVE
  27. 2,277.org.eclipse.hawkbit:hawkbit-boot-starter1 CVE
  28. 2,278.org.eclipse.hawkbit:hawkbit-boot-starter-ddi-api1 CVE
  29. 2,279.org.eclipse.hawkbit:hawkbit-boot-starter-dmf-api1 CVE
  30. 2,280.org.eclipse.hawkbit:hawkbit-boot-starter-mgmt-api1 CVE
  31. 2,281.org.eclipse.hawkbit:hawkbit-boot-starter-mgmt-ui1 CVE
  32. 2,282.org.eclipse.hawkbit:hawkbit-starters1 CVE
  33. 2,283.org.eclipse.hawkbit:hawkbit-ui1 CVE
  34. 2,284.org.eclipse.hawkbit:hawkbit-update-server1 CVE
  35. 2,285.org.eclipse.hono:hono-core1 CVE
  36. 2,286.org.eclipse.jdt:org.eclipse.jdt.ui1 CVE
  37. 2,287.org.eclipse.jetty.ee10:jetty-ee101 CVE
  38. 2,288.org.eclipse.jetty.ee10:jetty-ee10-jaspi1 CVE
  39. 2,289.org.eclipse.jetty.ee11:jetty-ee11-jaspi1 CVE
  40. 2,290.org.eclipse.jetty.ee8:jetty-ee8-jaspi1 CVE
  41. 2,291.org.eclipse.jetty.ee9:jetty-ee9-jaspi1 CVE
  42. 2,292.org.eclipse.jetty.http2:http2-hpack1 CVE
  43. 2,293.org.eclipse.jetty.http2:jetty-http2-server1 CVE
  44. 2,294.org.eclipse.jetty.http3:http3-common1 CVE
  45. 2,295.org.eclipse.jetty.http3:http3-qpack1 CVE
  46. 2,296.org.eclipse.jetty.http3:jetty-http3-common1 CVE
  47. 2,297.org.eclipse.jetty:jetty-deploy1 CVE
  48. 2,298.org.eclipse.jetty:jetty-jaspi1 CVE
  49. 2,299.org.eclipse.jetty:jetty-openid1 CVE
  50. 2,300.org.eclipse.kura:org.eclipse.kura.web21 CVE

Which Maven packages run in YOUR stack?

EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.

Start Free Scan →