^pkg:maven/com\.carrotsearch\.thirdparty/simple\-xml\-safe@.*$ CVE-2017-1000190 ^pkg:maven/io\.netty/netty\-.*@.*$ cpe:/a:netty:netty ^pkg:maven/org\.jruby/dirgra@.*$ cpe:/a:jruby:jruby ^pkg:maven/org\.carrot2\.shaded/carrot2\-guava@.*$ cpe:/a:google:guava ^pkg:maven/com\.google\.guava/guava@.*$ CVE-2018-10237