Maven Package Vulnerabilities

All 3,042 Java / JVM artifacts with known CVEs, ranked by live CVE volume — 7,786 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.

  1. 251.org.fitnesse:fitnesse5 CVEs
  2. 252.org.jboss.resteasy:resteasy-bom5 CVEs
  3. 253.org.jeecgframework.boot:jeecg-module-system5 CVEs
  4. 254.org.jenkins-ci.plugins:aws-codecommit-trigger5 CVEs
  5. 255.org.jenkins-ci.plugins:codedx5 CVEs
  6. 256.org.jenkins-ci.plugins:credentials5 CVEs
  7. 257.org.jenkins-ci.plugins:delphix5 CVEs
  8. 258.org.jenkins-ci.plugins:extended-choice-parameter5 CVEs
  9. 259.org.jenkins-ci.plugins:fortify5 CVEs
  10. 260.org.jenkins-ci.plugins:git-client5 CVEs
  11. 261.org.jenkins-ci.plugins:google-compute-engine5 CVEs
  12. 262.org.jenkins-ci.plugins:google-login5 CVEs
  13. 263.org.jenkins-ci.plugins:junit5 CVEs
  14. 264.org.jenkins-ci.plugins.m2release:m2release5 CVEs
  15. 265.org.jenkins-ci.plugins:mailer5 CVEs
  16. 266.org.jenkins-ci.plugins:matrix-project5 CVEs
  17. 267.org.jenkinsci.plugins:octoperf5 CVEs
  18. 268.org.jenkins-ci.plugins:openid5 CVEs
  19. 269.org.jenkins-ci.plugins:publish-over-ssh5 CVEs
  20. 270.org.jenkins-ci.plugins:scriptler5 CVEs
  21. 271.org.jenkins-ci.plugins:sinatra-chef-builder5 CVEs
  22. 272.org.jenkins-ci.plugins:support-core5 CVEs
  23. 273.org.jenkins-ci.plugins:vmanager-plugin5 CVEs
  24. 274.org.jenkins-ci.plugins:websphere-deployer5 CVEs
  25. 275.org.jenkins-ci.plugins:wso2id-oauth5 CVEs
  26. 276.org.jenkins-ci.tools:git-parameter5 CVEs
  27. 277.org.opencastproject:opencast-common5 CVEs
  28. 278.org.open-metadata:openmetadata-service5 CVEs
  29. 279.org.opennms:opennms-webapp5 CVEs
  30. 280.org.owasp.esapi:esapi5 CVEs
  31. 281.org.springframework.amqp:spring-amqp5 CVEs
  32. 282.org.springframework.boot:spring-boot5 CVEs
  33. 283.org.springframework.security.oauth:spring-security-oauth25 CVEs
  34. 284.org.springframework.security:spring-security-config5 CVEs
  35. 285.org.wildfly.security:wildfly-elytron5 CVEs
  36. 286.org.xwiki.platform:xwiki-platform-appwithinminutes-ui5 CVEs
  37. 287.org.xwiki.platform:xwiki-platform-distribution-war5 CVEs
  38. 288.org.xwiki.platform:xwiki-platform-legacy-oldcore5 CVEs
  39. 289.org.xwiki.platform:xwiki-platform-livetable-ui5 CVEs
  40. 290.org.zenframework.z8.dependencies.commons:log4j-1.2.175 CVEs
  41. 291.xerces:xercesImpl5 CVEs
  42. 292.ca.uhn.hapi.fhir:org.hl7.fhir.core4 CVEs
  43. 293.ca.uhn.hapi.fhir:org.hl7.fhir.dstu24 CVEs
  44. 294.com.alibaba.nacos:nacos-common4 CVEs
  45. 295.com.amazon.redshift:redshift-jdbc424 CVEs
  46. 296.com.bstek.ureport:ureport2-core4 CVEs
  47. 297.com.caucho:resin4 CVEs
  48. 298.com.checkmarx.jenkins:checkmarx4 CVEs
  49. 299.com.cloudtp.jenkins:paaslane-estimate4 CVEs
  50. 300.com.compuware.jenkins:compuware-topaz-for-total-test4 CVEs

Which Maven packages run in YOUR stack?

EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.

Start Free Scan →