Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-2988

IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.0.0.0 through 6.1.2.7, 6.2.0.0 through 6.2.0.4, and 6.2.1.0 could disclose sensitive server information to an unauthorized user that could aid in further attacks against the system.

Published

2025-08-19T20:15:30.757

Last Modified

2025-09-17T17:56:23.087

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 2.7 (LOW)

Weaknesses

Type: Primary
CWE-497

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	ibm	sterling_b2b_integrator	< 6.1.2.7_1	Yes
Application	ibm	sterling_b2b_integrator	< 6.2.0.5	Yes
Application	ibm	sterling_b2b_integrator	6.2.1.0	Yes
Application	ibm	sterling_file_gateway	< 6.1.2.7_1	Yes
Application	ibm	sterling_file_gateway	< 6.2.0.5	Yes
Application	ibm	sterling_file_gateway	6.2.1.0	Yes

References

https://www.ibm.com/support/pages/node/7242391 Vendor Advisory ([email protected])