PT-2025-28471 · Ibm · Ibm Sterling File Gateway
Published
2025-07-07
·
Updated
2025-08-02
·
CVE-2025-2827
CVSS v3.1
4.3
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions:
IBM Sterling File Gateway versions 6.0.0.0 through 6.1.2.6
IBM Sterling File Gateway versions 6.2.0.0 through 6.2.0.4
Description:
The issue could disclose sensitive installation directory information to an authenticated user, which could be used in further attacks against the system.
Recommendations:
For versions 6.0.0.0 through 6.1.2.6, update to a version that fixes the issue.
For versions 6.2.0.0 through 6.2.0.4, update to a version that fixes the issue.
As a temporary workaround, consider restricting access to sensitive installation directory information to minimize the risk of exploitation.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Sterling File Gateway