← back
CVE-2025-36002

IBM Sterling B2B Integrator information disclosure

CVSS 5.5 MEDIUMEPSS 0.1%CWE-256CWE-260
IBM Sterling B2B Integrator 6.2.0.0 through 6.2.0.5, and 6.2.1.0 and IBM Sterling File Gateway 6.2.0.0 through 6.2.0.5, and 6.2.1.0 stores user credentials in configuration files which can be read by a local user.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Affected products
IBM · Sterling B2B IntegratorIBM · Sterling File Gateway

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.ibm.com/support/pages/node/7248129