Home

Description

IBM Sterling B2B Integrator 6.0.0.0 through 6.1.2.7_1 and 6.2.0.0 through 6.2.0.4 and IBM Sterling File Gateway 6.0.0.0 through 6.1.2.7_1 and 6.2.0.0 through 6.2.0.4 could disclose sensitive system information about the server to a privileged user that could aid in further attacks against the system.

PUBLISHED Reserved 2025-03-22 | Published 2025-09-04 | Updated 2025-09-04 | Assigner ibm




LOW: 2.7CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N

Problem types

CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere

Product status

Default status
unaffected

6.0.0.0 (semver)
affected

6.2.0.0 (semver)
affected

Default status
unaffected

6.0.0.0 (semver)
affected

6.2.0.0 (semver)
affected

References

www.ibm.com/support/pages/node/7244021 vendor-advisory patch

cve.org (CVE-2025-2667)

nvd.nist.gov (CVE-2025-2667)

Download JSON