CVE-2025-2827
📊 4.3 MEDIUM⚡ 0.0%🎯 0 exploits
📅 Published Jul 8, 2025
📋 Status: Analyzed
IBM Sterling File Gateway 6.0.0.0 through 6.1.2.6, and 6.2.0.0 through 6.2.0.4 could disclose sensitive installation directory information to an authenticated user that could be used in further attacks against the system.
CVSS v3.1 • [email protected]
🎯 Affected Products & Systems
5 product configurations affected
Filter by type:
| Type | Vendor | Product | Version Range | Status | CPE String |
|---|---|---|---|---|---|
📱App | ibm | sterling file gateway | ≥ 6.0.0.0 ∧ < 6.1.2.7_1 | Vulnerable | cpe:2.3:a:ibm:sterling_file_gateway:*:*:*:*:*:*:*:* |
📱App | ibm | sterling file gateway | ≥ 6.2.0.0 ∧ < 6.2.0.5 | Vulnerable | cpe:2.3:a:ibm:sterling_file_gateway:*:*:*:*:*:*:*:* |
💻OS | ibm | aix | All versions | Not Vulnerable | cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:* |
💻OS | linux | linux kernel | All versions | Not Vulnerable | cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* |
💻OS | microsoft | windows | All versions | Not Vulnerable | cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* |
📱
VulnerableApplication
Version: ≥ 6.0.0.0 ∧ < 6.1.2.7_1
CPE:
cpe:2.3:a:ibm:sterling_file_gateway:*:*:*:*:*:*:*:*
📱
VulnerableApplication
Version: ≥ 6.2.0.0 ∧ < 6.2.0.5
CPE:
cpe:2.3:a:ibm:sterling_file_gateway:*:*:*:*:*:*:*:*
💻
SafeOperating System
Version: All versions
CPE:
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
5 products•scroll for more
Metrics
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Attack Vector:
NETWORK
Complexity:
LOW
Privileges:
LOW
User Interaction:
NONE
Confidentiality:
LOW
Integrity:
NONE
Availability:
NONE
Scope:
UNCHANGED
🔍 Technical Details
Analysis Status
AnalyzedCVSS Details
4.3 (MEDIUM)v3.1
Source: [email protected]
EPSS Details
0.0% (Minimal)11.1th percentile
Last updated: Oct 30, 2025
Exploitation probability within 30 days
Published Date
Jul 8, 2025 (3 months ago)
Last Modified
Aug 2, 2025 (3 months ago)
Security Weaknesses1
CWE-548
References2
NVDgeneral