Maven Package Vulnerabilities

All 3,042 Java / JVM artifacts with known CVEs, ranked by live CVE volume — 7,786 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.

  1. 201.org.csanchez.jenkins.plugins:kubernetes6 CVEs
  2. 202.org.geoserver:gs-main6 CVEs
  3. 203.org.glassfish.main.admingui:console-common6 CVEs
  4. 204.org.hibernate:hibernate-validator6 CVEs
  5. 205.org.igniterealtime.openfire:xmppserver6 CVEs
  6. 206.org.infinispan:infinispan-core6 CVEs
  7. 207.org.jeecgframework.boot:jeecg-boot-base-core6 CVEs
  8. 208.org.jenkins-ci.plugins:azure-ad6 CVEs
  9. 209.org.jenkins-ci.plugins:azure-vm-agents6 CVEs
  10. 210.org.jenkins-ci.plugins:ec2-deployment-dashboard6 CVEs
  11. 211.org.jenkins-ci.plugins:fortify-on-demand-uploader6 CVEs
  12. 212.org.jenkins-ci.plugins:ghprb6 CVEs
  13. 213.org.jenkins-ci.plugins:gitlab-oauth6 CVEs
  14. 214.org.jenkins-ci.plugins:gitlab-plugin6 CVEs
  15. 215.org.jenkins-ci.plugins:pipeline-maven6 CVEs
  16. 216.org.jenkins-ci.plugins:repository-connector6 CVEs
  17. 217.org.pytorch:executorch-android6 CVEs
  18. 218.org.silverpeas.core:silverpeas-core6 CVEs
  19. 219.org.springframework.security:spring-security-web6 CVEs
  20. 220.org.wildfly:wildfly-parent6 CVEs
  21. 221.org.xwiki.commons:xwiki-commons-xml6 CVEs
  22. 222.org.xwiki.platform:xwiki-platform-flamingo-skin-resources6 CVEs
  23. 223.org.yamcs:yamcs-core6 CVEs
  24. 224.ca.uhn.hapi.fhir:org.hl7.fhir.convertors5 CVEs
  25. 225.ca.uhn.hapi.fhir:org.hl7.fhir.dstu2016may5 CVEs
  26. 226.ca.uhn.hapi.fhir:org.hl7.fhir.dstu35 CVEs
  27. 227.ca.uhn.hapi.fhir:org.hl7.fhir.r45 CVEs
  28. 228.com.alibaba:dubbo5 CVEs
  29. 229.com.coravy.hudson.plugins.github:github5 CVEs
  30. 230.com.liferay:com.liferay.portal.search.web5 CVEs
  31. 231.com.mabl.integration.jenkins:mabl-integration5 CVEs
  32. 232.com.shopizer:shopizer5 CVEs
  33. 233.com.synopsys.jenkinsci:ownership5 CVEs
  34. 234.com.vaadin:vaadin5 CVEs
  35. 235.edu.stanford.nlp:stanford-corenlp5 CVEs
  36. 236.info.magnolia:magnolia-core5 CVEs
  37. 237.io.jenkins.plugins:neuvector-vulnerability-scanner5 CVEs
  38. 238.io.netty:netty-codec-redis5 CVEs
  39. 239.io.projectreactor.netty:reactor-netty-http5 CVEs
  40. 240.org.apache.atlas:apache-atlas5 CVEs
  41. 241.org.apache.commons:commons-configuration25 CVEs
  42. 242.org.apache.hadoop:hadoop-client5 CVEs
  43. 243.org.apache.inlong:manager-dao5 CVEs
  44. 244.org.apache.kylin:kylin-server-base5 CVEs
  45. 245.org.apache.thrift:libthrift5 CVEs
  46. 246.org.apache.tika:tika-parsers5 CVEs
  47. 247.org.biouno:uno-choice5 CVEs
  48. 248.org.bouncycastle:bcprov-ext-jdk15on5 CVEs
  49. 249.org.codehaus.jettison:jettison5 CVEs
  50. 250.org.dspace:dspace-jspui5 CVEs

Which Maven packages run in YOUR stack?

EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.

Start Free Scan →