Maven Package Vulnerabilities

All 3,042 Java / JVM artifacts with known CVEs, ranked by live CVE volume — 7,788 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.

  1. 401.org.jenkins-ci.plugins:teamconcert4 CVEs
  2. 402.org.jenkins-ci.plugins:tfs4 CVEs
  3. 403.org.jolokia:jolokia-core4 CVEs
  4. 404.org.jvnet.hudson.plugins:analysis-core4 CVEs
  5. 405.org.jvnet.hudson.plugins:storable-configs-plugin4 CVEs
  6. 406.org.keycloak:keycloak-ldap-federation4 CVEs
  7. 407.org.keycloak:keycloak-saml-core4 CVEs
  8. 408.org.keycloak:keycloak-server-spi-private4 CVEs
  9. 409.org.neo4j:neo4j4 CVEs
  10. 410.org.neo4j.procedure:apoc4 CVEs
  11. 411.org.openhab.ui.bundles:org.openhab.ui.cometvisu4 CVEs
  12. 412.org.openrefine:database4 CVEs
  13. 413.org.openrefine:main4 CVEs
  14. 414.org.opensaml:opensaml4 CVEs
  15. 415.org.ops4j.pax.logging:pax-logging-log4j24 CVEs
  16. 416.org.restlet.jse:org.restlet4 CVEs
  17. 417.org.rundeck:rundeck4 CVEs
  18. 418.org.sonatype.nexus.ci:nexus-jenkins-plugin4 CVEs
  19. 419.org.springframework:spring-expression4 CVEs
  20. 420.org.thymeleaf:thymeleaf-spring54 CVEs
  21. 421.org.wildfly:wildfly-undertow4 CVEs
  22. 422.org.xerial.snappy:snappy-java4 CVEs
  23. 423.org.xwiki.platform:xwiki-platform-attachment-ui4 CVEs
  24. 424.org.xwiki.platform:xwiki-platform-flamingo-theme-ui4 CVEs
  25. 425.org.xwiki.platform:xwiki-platform-notifications-ui4 CVEs
  26. 426.org.xwiki.platform:xwiki-platform-scheduler-ui4 CVEs
  27. 427.org.xwiki.platform:xwiki-platform-search-ui4 CVEs
  28. 428.org.xwiki.platform:xwiki-platform-skin-skinx4 CVEs
  29. 429.org.xwiki.platform:xwiki-platform-wiki-ui-mainwiki4 CVEs
  30. 430.org.yamcs:yamcs4 CVEs
  31. 431.software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk4 CVEs
  32. 432.ca.uhn.hapi.fhir:org.hl7.fhir.validation.cli3 CVEs
  33. 433.cn.hutool:hutool-all3 CVEs
  34. 434.com.adobe.acs:acs-aem-commons3 CVEs
  35. 435.com.alibaba:fastjson3 CVEs
  36. 436.com.blackducksoftware.integration:blackduck-hub3 CVEs
  37. 437.com.epam.reportportal:service-api3 CVEs
  38. 438.com.geteasyqa:easyqa3 CVEs
  39. 439.com.github.junrar:junrar3 CVEs
  40. 440.com.googlecode.owasp-java-html-sanitizer:owasp-java-html-sanitizer3 CVEs
  41. 441.com.google.guava:guava3 CVEs
  42. 442.com.google.protobuf:protobuf-kotlin3 CVEs
  43. 443.com.graphql-java:graphql-java3 CVEs
  44. 444.com.groupon.jenkins-ci.plugins:DotCi3 CVEs
  45. 445.com.hazelcast:hazelcast-enterprise3 CVEs
  46. 446.com.ibeetl:beetl3 CVEs
  47. 447.com.inedo.proget:inedo-proget3 CVEs
  48. 448.com.liferay:com.liferay.account.admin.web3 CVEs
  49. 449.com.liferay:com.liferay.calendar.web3 CVEs
  50. 450.com.liferay:com.liferay.dynamic.data.mapping.form.web3 CVEs

Which Maven packages run in YOUR stack?

EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.

Start Free Scan →