Vulnerability Details CVE-2025-36002
IBM Sterling B2B Integrator 6.2.0.0 through 6.2.0.5, and 6.2.1.0 and IBM Sterling File Gateway 6.2.0.0 through 6.2.0.5, and 6.2.1.0 stores user credentials in configuration files which can be read by a local user.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 0.8%
CVSS Severity
CVSS v3 Score 5.5
Products affected by CVE-2025-36002
-
cpe:2.3:a:ibm:sterling_b2b_integrator:6.2.0.2
-
cpe:2.3:a:ibm:sterling_b2b_integrator:6.2.1.0
-
cpe:2.3:a:ibm:sterling_file_gateway:6.2.0.0
-
cpe:2.3:a:ibm:sterling_file_gateway:6.2.0.1
-
cpe:2.3:a:ibm:sterling_file_gateway:6.2.0.2
-
cpe:2.3:a:ibm:sterling_file_gateway:6.2.0.3
-
cpe:2.3:a:ibm:sterling_file_gateway:6.2.0.4
-
cpe:2.3:a:ibm:sterling_file_gateway:6.2.0.5
-
cpe:2.3:a:ibm:sterling_file_gateway:6.2.1.0
-
cpe:2.3:o:ibm:aix:-
-
cpe:2.3:o:linux:linux_kernel:-
-
cpe:2.3:o:microsoft:windows:-