Summary IBM Sterling B2B Integrator and IBM Sterling File Gateway have addressed the information disclosure security vulnerability Vulnerability Details CVEID:CVE-2025-2988 DESCRIPTION: IBM Sterling B2B Integrator Standard Edition could disclose sensitive server information to an unauthorized user that could aid in further attacks against the system. CWE:CWE-497: Exposure of Sensitive System Information to an Unauthorized Control Sphere CVSS Source: IBM CVSS Base score: 2.7 CVSS Vector:(CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N) Affected Products and Versions Affected Product(s)| Version(s) —|— IBM Sterling B2B Integrator and IBM Sterling File Gateway| 6.0.0.0 – 6.1.2.7 IBM Sterling B2B Integrator and IBM Sterling File Gateway| 6.2.0.0 – 6.2.0.4, 6.2.1.0 Remediation/Fixes Product| Version| APAR| Remediation & Fix —|—|—|— IBM Sterling B2B Integrator and IBM Sterling File Gateway| 6.0.0.0 – 6.1.2.7| IT48437| Apply B2Bi 6.1.2.7_1. 6.2.0.5 or 6.2.1.1 IBM Sterling B2B Integrator and IBM Sterling File Gateway| 6.2.0.0 – 6.2.0.4, 6.2.1.0| IT48437| Apply B2Bi 6.2.0.5 or 6.2.1.1 The IIM versions of 6.1.2.7_1, 6.2.0.5 and 6.2.1.1 are available on Fix Central. The container version of 6.1.2.7_1, 6.2.0.5 and 6.2.1.1 are available in IBM Entitled Registry. Workarounds and Mitigations…Read More