CVE-2025-36112

MEDIUM

IBM Sterling B2B Integrator & File Gateway <6.2.1.1 - Info Disclosure

Title source: llm

Description

IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.0.0.0 through 6.1.2.7 and 6.2.0.0 through 6.2.0.5 and 6.2.1.1 could reveal sensitive server IP configuration information to an unauthorized user.

References (1)

[Vendor Advisory] https://www.ibm.com/support/pages/node/7252197

Scores

CVSS v3 5.3

EPSS 0.0003

EPSS Percentile 7.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-497

Status published

Products (4)

ibm/sterling_b2b_integrator 6.2.1.1

ibm/sterling_b2b_integrator 6.0.0.0 - 6.1.2.7_2

ibm/sterling_file_gateway 6.2.1.1

ibm/sterling_file_gateway 6.0.0.0 - 6.1.2.7_2

Published Nov 24, 2025

Tracked Since Feb 18, 2026