|CVE Description||CVSSv2 Base Score||Component||Product and Resolution|
|CVE-2012-3499 Cross-Site Scripting (XSS) vulnerability||4.3||Apache HTTP Server|| |
|CVE-2013-1862 Cryptographic Issues vulnerability||5.1|
This notification describes vulnerabilities fixed in third-party components that are included in Oracle's product distributions.
Information about vulnerabilities affecting Oracle products can be found on Oracle Critical Patch Updates and Security Alerts page.