CVE-2025-13718

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions IBM Sterling Partner Engagement Manager versions 6.2.3.0 through 6.2.3.5 IBM Sterling Partner Engagement Manager versions 6.2.4.0 through 6.2.4.2

Description The software may allow a remote attacker to obtain sensitive information in cleartext within a communication channel, potentially exposing it to unauthorized interception.

Recommendations Update IBM Sterling Partner Engagement Manager to a version later than 6.2.3.5. Update IBM Sterling Partner Engagement Manager to a version later than 6.2.4.2.

Fix

Cleartext Transmission of Sensitive Information

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-319

Related Identifiers

CVE-2025-13718

Affected Products

Ibm Sterling Partner Engagement Manager

CVE-2025-13718

Weakness Enumeration

Related Identifiers

Affected Products

References · 3