Apache Maven 1.x — End of Life
EOLApache Maven 1.x — All releases
| Version | Released | Active support | EOL date | Latest patch | Status |
|---|---|---|---|---|---|
| 1 | Jul 13, 2004 | — | Feb 18, 2014 | 1.1 | EOL |
CVEs affecting Apache Maven 1.x (0)
Apache Maven 1.x is EOL — migrate to Apache Maven 2.x
Apache Maven 2.x is the next major release. Plan your upgrade before Apache Maven 1.x stops receiving security patches.
Frequently asked questions
Is Apache Maven 1 end of life?
Yes. All Apache Maven 1.x releases have reached end of life and no longer receive security patches. Migrate to Apache Maven 2.x as soon as possible.
What CVEs affect Apache Maven 1?
No CVEs are currently tracked for Apache Maven 1.x in our database. This may mean no vulnerabilities have been recorded yet, or the data is still syncing.
What is the latest Apache Maven 1 version?
The latest Apache Maven 1.x patch release is 1.1, released on June 25, 2007. Always run the latest patch to benefit from all security fixes.
How to migrate from Apache Maven 1 to Apache Maven 2?
To migrate from Apache Maven 1 to Apache Maven 2: (1) review the official Apache Maven 2 migration guide for breaking changes, (2) update dependencies and configuration accordingly, (3) test thoroughly in a staging environment, (4) deploy with a rollback plan. Starting early gives you time to resolve compatibility issues before your current version reaches end of life.
Is it safe to run Apache Maven 1 in production?
No. Apache Maven 1 has reached end of life and security vulnerabilities are no longer patched. Upgrade to a supported version immediately.
Data sourced from endoflife.date · CVE data from NVD · EPSS from FIRST.org · KEV from CISA