CVE-2025-36113

Name of the Vulnerable Software and Affected Versions IBM Sterling Connect:Express Adapter for Sterling B2B Integrator versions 5.2.0.00 through 5.2.0.12

Description An authenticated user can embed arbitrary JavaScript code in the Web UI, potentially altering functionality and leading to credentials disclosure within a trusted session. The issue involves a cross-site scripting condition.

Recommendations Update to a newer version that contains a fix for this vulnerability.