Known Vulnerabilities for Maven by Apache
Listed below are 3 of the newest known vulnerabilities associated with "Maven" by "Apache".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-32735 json | openapi-to-java-records-mustache-templates allows users to generate Java Records from OpenAPI specifications. Starting in ver... | Not Provided | 2026-03-18 | 2026-03-19 |
| CVE-2026-22750 json | When configuring SSL bundles in Spring Cloud Gateway by using the configuration property spring.ssl.bundle, the configuratio... | Not Provided | 2026-04-10 | 2026-04-10 |
| CVE-2021-37714 json | jsoup is a Java library for working with HTML. Those using jsoup versions prior to 1.14.2 to parse untrusted HTML or XML may ... | 7.5 - HIGH | 2021-08-18 | 2023-11-07 |
| CVE-2021-26291 json | Apache Maven will follow repositories that are defined in a dependency’s Project Object Model (pom) which may be surprising... | 9.1 - CRITICAL | 2021-04-23 | 2023-11-07 |
| CVE-2013-0253 json | Not Provided | 2013-04-09 | 2026-04-29 |