Vulnerability Database

314,433

Total vulnerabilities in the database

CVE-2015-0194

XML External Entity (XXE) vulnerability in IBM Sterling B2B Integrator 5.1 and 5.2 and IBM Sterling File Gateway 2.1 and 2.2 allows remote attackers to read arbitrary files via a crafted XML data.

Published: Aug 2, 2017
Updated: Nov 9, 2025
CVE: CVE-2015-0194
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4
AV:N/AC:L/Au:S/C:P/I:N/A:N

CWEs:

CWE-611

OWASP TOP 10:

A4 - XML External Entities (XXE)

Affected Software
References

Software	From	Fixed in
ibm / sterling_b2b_integrator	5.2	5.2.x
ibm / sterling_b2b_integrator	5.1	5.1.x
ibm / sterling_file_gateway	2.1	2.1.x
ibm / sterling_file_gateway	2.2	2.2.x

http://www-01.ibm.com/support/docview.wss?uid=swg1IT06733
http://www-01.ibm.com/support/docview.wss?uid=swg21699482
http://www.securityfocus.com/bid/73401

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo