CVE-2013-2322

low

Published 2013-06-28 · Modified 2026-04-29

CVSS v3

—

CVSS v2

3.5

VIR risk

3.5

Description

HP SQL/MX 3.2 and earlier on NonStop servers, when SQL/MP Objects are used, allows remote authenticated users to obtain sensitive information via unspecified vectors, aka the "SQL/MP index" issue.

Predictions

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: hp-security-alert@hp.com — http://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?docId=emr_na-c03762155

Application impact

Vendor	Product	Versions
hp	nonstop_sql\/mx	`{"endIncluding":"3.2"}`
hp	nonstop_sql\/mx	`1.8`
hp	nonstop_sql\/mx	`2.0`
hp	nonstop_sql\/mx	`2.2`
hp	nonstop_sql\/mx	`2.3`
hp	nonstop_sql\/mx	`3.0`
hp	nonstop_sql\/mx	`3.1`
hp	nonstop_sql\/mx	`21`

References

http://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?docId=emr_na-c03762155
http://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?docId=emr_na-c03762155

CWEs

CWE-200

Verify integrity in audit chain (admin only). AS-IS.