Maven Vulnerability Detection for Java | GeekWala
Loading...
Skip to main content
GeekWala
Java/Kotlin

Maven Vulnerability Detection for Java

Central repository for Java and JVM ecosystem. Maven powers enterprise applications, Android development, and more.

Scan Your Maven ProjectCreate Free Account
5
Total Vulnerabilities
16
Critical
7
High Severity
0
Last 30 Days

16 Known Exploited Vulnerabilities

These vulnerabilities are actively being exploited in the wild. Scan your project to check if you're affected.

How to Scan Maven Projects

GeekWala supports the following Java/Kotlin dependency files

Supported Files

  • pom.xml

Scan Methods

  • Upload your lockfile
  • Paste file contents
  • Import from GitHub

What You Get

  • Vulnerability details
  • Fixed versions
  • Severity scores

Recent Maven Vulnerabilities

Latest security issues affecting Java/Kotlin packages

CRITICAL
GHSA-7rjr-3q55-vv33
Incomplete fix for Apache Log4j vulnerability...
CRITICAL
GHSA-jfh8-c2jp-5v3q
Remote code injection in Log4j...
HIGH
GHSA-p6xc-xr62-6r2g
Apache Log4j2 vulnerable to Improper Input Validation and Uncontrolled Recursion...
MODERATE
GHSA-vc5p-v9hr-52mj
Apache Log4j does not verify the TLS hostname in its Socket Appender...
MODERATE
GHSA-8489-44mv-ggj8
Improper Input Validation and Injection in Apache Log4j2...
View all vulnerabilities

Most Affected Maven Packages

Packages with the most known vulnerabilities

1
org.apache.logging.log4j:log4j-core
5 vulns
2
org.ops4j.pax.logging:pax-logging-log4j2
4 vulns
3
com.guicedee.services:log4j-core
1 vuln
4
org.xbib.elasticsearch:log4j
1 vuln
5
uk.co.nichesolutions.logging.log4j:log4j-core
1 vuln
Browse all Maven packages

Secure Your Java/Kotlin Dependencies

Scan your pom.xml or lockfile against the OSV database. Get results in seconds with clear remediation guidance.

Scan Now - It's FreeRead the Docs
Data from OSV Database5+ Maven vulnerabilities indexedUpdated daily