4.9
CVE-2025-36348
- EPSS 0.05%
- Veröffentlicht 17.02.2026 21:31:30
- Zuletzt bearbeitet 20.02.2026 16:54:03
- Quelle psirt@us.ibm.com
- CVE-Watchlists
- Unerledigt
IBM Sterling B2B Integrator versions 6.1.0.0 through 6.1.2.7_2, 6.2.0.0 through 6.2.0.5, and 6.2.1.0 through 6.2.1.1, and IBM Sterling File Gateway versions 6.1.0.0 through 6.1.2.7_2, 6.2.0.0 through 6.2.0.5, and 6.2.1.0 through 6.2.1.1 may expose sensitive information to a remote privileged attacker due to the application returning detailed technical error messages in the browser.
Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
LoginDaten sind bereitgestellt durch National Vulnerability Database (NVD)
Ibm ≫ Sterling B2b Integrator Version >= 6.1.0.0 < 6.1.2.8
Ibm ≫ Sterling B2b Integrator Version >= 6.2.0.0 < 6.2.0.5_1
Ibm ≫ Sterling B2b Integrator Version >= 6.2.1.0 < 6.2.1.1_1
Ibm ≫ Sterling File Gateway Version >= 6.1.0.0 < 6.1.2.8
Ibm ≫ Sterling File Gateway Version >= 6.2.0.0 < 6.2.0.5_1
Ibm ≫ Sterling File Gateway Version >= 6.2.1.0 < 6.2.1.1_1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.05% | 0.14 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| psirt@us.ibm.com | 4.9 | 1.2 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
|
CWE-209 Generation of Error Message Containing Sensitive Information
The product generates an error message that includes sensitive information about its environment, users, or associated data.