Lucene search
K

2426 matches found

EUVD
EUVD
added 2025/11/25 3:31 p.m.5 views

EUVD-2025-199597

IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.0.0.0 through 6.1.2.7 and 6.2.0.0 through 6.2.0.5 and 6.2.1.1 could disclose sensitive information due to a missing or insecure SameSite attribute for a sensitive cookie...

3.7CVSS5.7AI score0.00261EPSS
Exploits0References2
NVD
NVD
added 2025/11/25 3:15 p.m.5 views

CVE-2025-36134

IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.0.0.0 through 6.1.2.7 and 6.2.0.0 through 6.2.0.5 and 6.2.1.1 could disclose sensitive information due to a missing or insecure SameSite attribute for a sensitive cookie...

7.5CVSS0.00261EPSS
Exploits0References1
OSV
OSV
added 2025/11/25 3:15 p.m.3 views

CVE-2025-36134

IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.0.0.0 through 6.1.2.7 and 6.2.0.0 through 6.2.0.5 and 6.2.1.1 could disclose sensitive information due to a missing or insecure SameSite attribute for a sensitive cookie...

7.5CVSS5.7AI score0.00261EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/25 2:40 p.m.8 views

CVE-2025-36134 IBM Sterling B2B Integrator and IBM Sterling File Gateway information disclosure

IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.0.0.0 through 6.1.2.7 and 6.2.0.0 through 6.2.0.5 and 6.2.1.1 could disclose sensitive information due to a missing or insecure SameSite attribute for a sensitive cookie...

3.7CVSS0.00261EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/11/25 12:0 a.m.5 views

PT-2025-48033

Name of the Vulnerable Software and Affected Versions IBM Sterling B2B Integrator and IBM Sterling File Gateway versions 6.0.0.0 through 6.1.2.7 IBM Sterling B2B Integrator and IBM Sterling File Gateway versions 6.2.0.0 through 6.2.0.5 IBM Sterling B2B Integrator and IBM Sterling File Gateway...

7.5CVSS6AI score0.00261EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/11/25 12:0 a.m.3 views

IBM Sterling B2B Integrator和IBM Sterling File Gateway 安全漏洞

IBM Sterling B2B Integrator and IBM Sterling File Gateway are both products of International Business Machines IBM.IBM Sterling B2B Integrator is a suite of software that integrates critical B2B processes, transactions and relationships. The software supports secure integration of complex B2B...

7.5CVSS6.3AI score0.00261EPSS
Exploits0References2
OSV
OSV
added 2025/11/24 7:15 p.m.2 views

CVE-2025-36112

IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.0.0.0 through 6.1.2.7 and 6.2.0.0 through 6.2.0.5 and 6.2.1.1 could reveal sensitive server IP configuration information to an unauthorized user...

5.3CVSS5.8AI score
Exploits0References1
NVD
NVD
added 2025/11/24 7:15 p.m.4 views

CVE-2025-36112

IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.0.0.0 through 6.1.2.7 and 6.2.0.0 through 6.2.0.5 and 6.2.1.1 could reveal sensitive server IP configuration information to an unauthorized user...

5.3CVSS0.00205EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/24 6:25 p.m.7 views

CVE-2025-36112 IBM Sterling B2B Integrator and IBM Sterling File Gateway information disclosure

IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.0.0.0 through 6.1.2.7 and 6.2.0.0 through 6.2.0.5 and 6.2.1.1 could reveal sensitive server IP configuration information to an unauthorized user...

5.3CVSS6.1AI score0.00205EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/24 6:25 p.m.9 views

CVE-2025-36112 IBM Sterling B2B Integrator and IBM Sterling File Gateway information disclosure

IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.0.0.0 through 6.1.2.7 and 6.2.0.0 through 6.2.0.5 and 6.2.1.1 could reveal sensitive server IP configuration information to an unauthorized user...

5.3CVSS0.00205EPSS
Exploits0References1
CVE
CVE
added 2025/11/24 6:25 p.m.13 views

CVE-2025-36112

The CVE-2025-36112 issue affects IBM Sterling B2B Integrator and IBM Sterling File Gateway, specifically versions 6.0.0.0–6.1.2.7_1, 6.2.0.0–6.2.0.5, and 6.2.1.1, where an information disclosure vulnerability could reveal sensitive server IP configuration information to an unauthorized user. The ...

5.3CVSS6.1AI score0.00205EPSS
Exploits0References1Affected Software2
Positive Technologies
Positive Technologies
added 2025/11/24 12:0 a.m.4 views

PT-2025-47952

IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.0.0.0 through 6.1.2.7 and 6.2.0.0 through 6.2.0.5 and 6.2.1.1 could reveal sensitive server IP configuration information to an unauthorized user...

5.3CVSS6.5AI score0.00205EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/11/24 12:0 a.m.5 views

IBM Sterling B2B Integrator和IBM Sterling File Gateway 安全漏洞

IBM Sterling B2B Integrator and IBM Sterling File Gateway are both products of International Business Machines IBM.IBM Sterling B2B Integrator is a suite of software that integrates critical B2B processes, transactions and relationships. The software supports secure integration of complex B2B...

5.3CVSS6.4AI score0.00205EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/11/21 12:56 p.m.8 views

Security Bulletin: Multiple Security Vulnerabilities in IBM Sterling B2B Integrator and IBM Sterling File Gateway (CVE-2023-32731 CVE-2023-32732)

Summary IBM Sterling B2B Integrator and IBM Sterling File Gateway have addressed the security vulnerabilities Vulnerability Details CVEID:CVE-2023-32731 DESCRIPTION: When gRPC HTTP2 stack raised a header size exceeded error, it skipped parsing the rest of the HPACK frame. This caused any HPACK...

7.5CVSS6.6AI score0.00531EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/11/21 12:52 p.m.7 views

Security Bulletin: IBM Sterling B2B Integrator and IBM Sterling File Gateway are Vulnerable to Information Disclosure (CVE-2025-36134)

Summary IBM Sterling B2B Integrator and IBM Sterling File Gateway have addressed the information disclosure vulnerability. Please apply the following upgrades to remediate the vulnerability. Vulnerability Details CVEID:CVE-2025-36134 DESCRIPTION: IBM Sterling B2B Integrator and IBM Sterling File...

7.5CVSS5.9AI score0.00261EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/11/21 11:56 a.m.8 views

Security Bulletin: IBM Sterling B2B Integrator and IBM Sterling File Gateway are Vulnerable to Information Disclosure (CVE-2025-36112)

Summary IBM Sterling B2B Integrator and IBM Sterling File Gateway have addressed the information disclosure vulnerability. Please apply the fixes available from IBM. Vulnerability Details CVEID:CVE-2025-36112 DESCRIPTION: IBM Sterling B2B Integrator and IBM Sterling File Gateway could reveal...

5.3CVSS6.1AI score0.00205EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/11/21 11:50 a.m.5 views

Security Bulletin: IBM Sterling B2B Integrator and IBM Sterling File Gateway are Vulnerable to Improper Neutralization (CVE-2025-5878)

Summary IBM Sterling B2B Integrator and IBM Sterling File Gateway have addressed the improper neutralization vulnerability Vulnerability Details CVEID:CVE-2025-5878 DESCRIPTION: A vulnerability was found in ESAPI esapi-java-legacy and classified as problematic. This issue affects the interface...

7.5CVSS7AI score0.004EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/11/21 11:39 a.m.7 views

Security Bulletin: IBM Sterling B2B Integrator and IBM Sterling File Gateway are Vulnerable to Improper Access Control (CVE-2025-48734)

Summary IBM Sterling B2B Integrator and IBM Sterling File Gateway have addressed the improper access control vulnerability Vulnerability Details CVEID:CVE-2025-48734 DESCRIPTION: Improper Access Control vulnerability in Apache Commons. A special BeanIntrospector class was added in version 1.9.2...

8.8CVSS7.2AI score0.01548EPSS
Exploits1Affected Software1
EUVD
EUVD
added 2025/11/17 1:25 a.m.2 views

EUVD-2025-197742

Malicious code in integrator-2829 npm...

6.6AI score
Exploits0References1
Snyk
Snyk
added 2025/11/17 1:25 a.m.1 views

Malicious Package

Overview integrator-2829 is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
Rows per page
Query Builder