Information Disclosure in IBM Sterling B2B Integrator and File Gateway
CVE-2025-2667

2.7LOW

Key Information:

Vendor: IBM
Status: Sterling B2b Integrator; Sterling File Gateway
Vendor: CVE Published:; 4 September 2025

What is CVE-2025-2667?

IBM Sterling B2B Integrator and IBM Sterling File Gateway contain a vulnerability that allows privileged users to access sensitive system information. This breach could potentially be exploited to launch further attacks against the system, compromising its integrity and security. It is essential to address this issue promptly to safeguard against potential data exposure.

Affected Version(s)

Sterling B2B Integrator 6.0.0.0 <= 6.1.2.7_1

Sterling B2B Integrator 6.2.0.0 <= 6.2.0.4

Sterling File Gateway 6.0.0.0 <= 6.1.2.7_1

References

https://www.ibm.com/support/pages/node/7244021

vendor-advisorypatch

CVSS V3.1

Score:

2.7

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 4, 2025
Vulnerability Reserved
Mar 22, 2025