IBM Sterling B2B Integrator
Moderate fix3 remedies
cpe:2.3:a:ibm:sterling_b2b_integrator:*:*:*:*:*:*:*
Moderate fix3 remedies
- >= 6.0.0.0, <= 6.1.2.7
- >= 6.2.0.0, <= 6.2.0.4
IBM Sterling B2B Integrator and File Gateway Untrusted Web Link Vulnerability Allowing Information Exposure and Unauthorized Actions
Vulnerability
Patched
A vulnerability exists in IBM Sterling B2B Integrator and IBM Sterling File Gateway versions 6.0.0.0 through 6.1.2.7 and 6.2.0.0 through 6.2.0.4. The issue arises from the use of web links that reference untrusted external sites, potentially allowing remote attackers to expose sensitive information or perform unauthorized actions on the victims' web browsers.
Impact
Exploitation of this vulnerability could lead to the exposure of sensitive information or unauthorized actions being performed on the victims' web browsers.
Remediation
Users can upgrade to IBM Sterling B2B Integrator or IBM Sterling File Gateway versions 6.1.2.7_1, 6.2.0.5, or 6.2.1.0. The IIM and container versions of these releases are available on Fix Central and in the IBM Entitled Registry, respectively.
Added: Jul 18, 2025, 7:33 PM
Updated: Jul 18, 2025, 7:33 PM
Vulnerability Rating
Custom Algorithm
spread
2.6impact
1.7exploitability
6.0remediation
7.7relevance
0.3threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.