CVE-2025-36348
published 2026-02-17CVE-2025-36348: IBM Sterling B2B Integrator versions 6.1.0.0 through 6.1.2.7_2, 6.2.0.0 through 6.2.0.5, and 6.2.1.0 through 6.2.1.1, and IBM Sterling File Gateway versions…
medium4.9CVSS 3.1
AVNACLPRHUINSUCHINAN
IBM Sterling B2B Integrator versions 6.1.0.0 through 6.1.2.7_2, 6.2.0.0 through 6.2.0.5, and 6.2.1.0 through 6.2.1.1, and IBM Sterling File Gateway versions 6.1.0.0 through 6.1.2.7_2, 6.2.0.0 through 6.2.0.5, and 6.2.1.0 through 6.2.1.1 may expose sensitive information to a remote privileged attacker due to the application returning detailed technical error messages in the browser.
Affected
12 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | sterling_b2b_integrator | >= 6.1.0.0 < 6.1.2.8 | 6.1.2.8 |
| ibm | sterling_b2b_integrator | 6.1.0.0 – 6.1.2.7_2 | — |
| ibm | sterling_b2b_integrator | >= 6.2.0.0 < 6.2.0.5_1 | 6.2.0.5_1 |
| ibm | sterling_b2b_integrator | 6.2.0.0 – 6.2.0.5 | — |
| ibm | sterling_b2b_integrator | >= 6.2.1.0 < 6.2.1.1_1 | 6.2.1.1_1 |
| ibm | sterling_b2b_integrator | 6.2.1.0 – 6.2.1.1 | — |
| ibm | sterling_file_gateway | >= 6.1.0.0 < 6.1.2.8 | 6.1.2.8 |
| ibm | sterling_file_gateway | 6.1.0.0 – 6.1.2.7_2 | — |
| ibm | sterling_file_gateway | >= 6.2.0.0 < 6.2.0.5_1 | 6.2.0.5_1 |
| ibm | sterling_file_gateway | 6.2.0.0 – 6.2.0.5 | — |
| ibm | sterling_file_gateway | >= 6.2.1.0 < 6.2.1.1_1 | 6.2.1.1_1 |
| ibm | sterling_file_gateway | 6.2.1.0 – 6.2.1.1 | — |