PT-2026-20249 · Ibm · Ibm Sterling B2B Integrator+1
Published
2026-02-17
·
Updated
2026-02-18
·
CVE-2025-36348
CVSS v3.1
4.9
Medium
| Vector | AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
IBM Sterling B2B Integrator versions 6.1.0.0 through 6.1.2.7 2
IBM Sterling B2B Integrator versions 6.2.0.0 through 6.2.0.5
IBM Sterling B2B Integrator versions 6.2.1.0 through 6.2.1.1
IBM Sterling File Gateway versions 6.1.0.0 through 6.1.2.7 2
IBM Sterling File Gateway versions 6.2.0.0 through 6.2.0.5
IBM Sterling File Gateway versions 6.2.1.0 through 6.2.1.1
Description
The application may expose sensitive information to a remote privileged attacker due to the application returning detailed technical error messages in the browser.
Recommendations
IBM Sterling B2B Integrator versions 6.1.0.0 through 6.1.2.7 2 should be updated.
IBM Sterling B2B Integrator versions 6.2.0.0 through 6.2.0.5 should be updated.
IBM Sterling B2B Integrator versions 6.2.1.0 through 6.2.1.1 should be updated.
IBM Sterling File Gateway versions 6.1.0.0 through 6.1.2.7 2 should be updated.
IBM Sterling File Gateway versions 6.2.0.0 through 6.2.0.5 should be updated.
IBM Sterling File Gateway versions 6.2.1.0 through 6.2.1.1 should be updated.
Fix
Generation of Error Message Containing Sensitive Information
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Sterling B2B Integrator
Ibm Sterling File Gateway