CVE-2025-36112

Summary

IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.0.0.0 through 6.1.2.7 and 6.2.0.0 through 6.2.0.5 and 6.2.1.1 could reveal sensitive server IP configuration information to an unauthorized user.

Affected Software

VendorProductVersion RangeStatus
IBMSterling B2B Integrator6.0.0.0 <= 6.1.2.7affected
IBMSterling B2B Integrator6.2.0.0 <= 6.2.0.5affected
IBMSterling B2B Integrator6.2.1.1affected
IBMSterling File Gateway6.0.0.0 <= 6.1.2.7affected
IBMSterling File Gateway6.2.0.0 <= 6.2.0.5affected
IBMSterling File Gateway6.2.1.1affected

Weaknesses

  • CWE-497: CWE-497

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References