Maven Package Vulnerabilities

All 3,054 Java / JVM artifacts with known CVEs, ranked by live CVE volume — 7,841 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.

  1. 2,851.org.springframework.integration:spring-integration-xml1 CVE
  2. 2,852.org.springframework.security:spring-security-aspects1 CVE
  3. 2,853.org.springframework.security:spring-security-bom1 CVE
  4. 2,854.org.springframework.security:spring-security-cas1 CVE
  5. 2,855.org.springframework.security:spring-security-crypto1 CVE
  6. 2,856.org.springframework.security:spring-security-oauth2-authorization-server1 CVE
  7. 2,857.org.springframework.session:spring-session-core1 CVE
  8. 2,858.org.springframework.social:spring-social-core1 CVE
  9. 2,859.org.springframework:spring-framework-bom1 CVE
  10. 2,860.org.springframework:spring-websocket1 CVE
  11. 2,861.org.springframework.vault:spring-vault-core1 CVE
  12. 2,862.org.springframework.ws:spring-ws1 CVE
  13. 2,863.org.springframework.ws:spring-xml1 CVE
  14. 2,864.org.terasoluna.gfw:terasoluna-gfw-common1 CVE
  15. 2,865.org.testifyproject.external:external-snakeyaml1 CVE
  16. 2,866.org.testng:testng1 CVE
  17. 2,867.org.thingsboard:application1 CVE
  18. 2,868.org.thingsboard:thingsboard1 CVE
  19. 2,869.org.togglz:togglz-console1 CVE
  20. 2,870.org.torpedoquery:org.torpedoquery1 CVE
  21. 2,871.org.typelevel:grackle-core_2.131 CVE
  22. 2,872.org.typelevel:grackle-core_31 CVE
  23. 2,873.org.typelevel:grackle-core_native0.4_2.131 CVE
  24. 2,874.org.typelevel:grackle-core_native0.4_31 CVE
  25. 2,875.org.typelevel:grackle-core_sjs1_2.131 CVE
  26. 2,876.org.typelevel:grackle-core_sjs1_31 CVE
  27. 2,877.org.typelevel:jawn-parser_0.251 CVE
  28. 2,878.org.typelevel:jawn-parser_0.271 CVE
  29. 2,879.org.typelevel:jawn-parser_2.101 CVE
  30. 2,880.org.typelevel:jawn-parser_2.111 CVE
  31. 2,881.org.typelevel:jawn-parser_2.121 CVE
  32. 2,882.org.typelevel:jawn-parser_2.131 CVE
  33. 2,883.org.typelevel:jawn-parser_2.13.0-M51 CVE
  34. 2,884.org.typelevel:jawn-parser_2.13.0-RC11 CVE
  35. 2,885.org.typelevel:jawn-parser_2.13.0-RC21 CVE
  36. 2,886.org.typelevel:jawn-parser_2.13.0-RC31 CVE
  37. 2,887.org.typelevel:jawn-parser_31 CVE
  38. 2,888.org.typelevel:jawn-parser_3.0.0-M11 CVE
  39. 2,889.org.typelevel:jawn-parser_3.0.0-M21 CVE
  40. 2,890.org.typelevel:jawn-parser_3.0.0-M31 CVE
  41. 2,891.org.typelevel:jawn-parser_3.0.0-RC11 CVE
  42. 2,892.org.typelevel:jawn-parser_3.0.0-RC21 CVE
  43. 2,893.org.typelevel:jawn-parser_3.0.0-RC31 CVE
  44. 2,894.org.typelevel:jawn-parserg1 CVE
  45. 2,895.org.uberfire:uberfire-parent1 CVE
  46. 2,896.org.ukiuni.callOtherJenkins:call-remote-job-plugin1 CVE
  47. 2,897.org.ukiuni.monitor-remote-job-plugin:monitor-remote-job1 CVE
  48. 2,898.org.vivoweb:vitro-project1 CVE
  49. 2,899.org.webjars.bower:angular1 CVE
  50. 2,900.org.webjars.bowergithub.vaadin:vaadin-menu-bar1 CVE

Which Maven packages run in YOUR stack?

EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.

Start Free Scan →