CVE-2025-1348 is a medium-severity vulnerability affecting IBM Sterling B2B Integrator and IBM Sterling File Gateway versions 6.0.0.0 through 6.1.2.6 and 6.2.0.0 through 6.2.0.4. The issue arises from improper caching policies implemented in the web interface of these products, which allow sensitive information to be exposed through the browser cache. Specifically, the affected software does not enforce suitable cache-control headers or other mechanisms to prevent sensitive data from being stored in the browser cache. This flaw enables a local attacker with access to the victim's machine to retrieve sensitive information by inspecting the browser cache, potentially leaking confidential business data or credentials. The vulnerability is classified under CWE-525, which pertains to information exposure through browser caching. The CVSS v3.1 base score is 4.0, reflecting a low attack vector (local), low complexity, no privileges required, and no user interaction needed. The impact is limited to confidentiality, with no effect on integrity or availability. No known exploits are currently reported in the wild, and no patches have been linked yet. The vulnerability was publicly disclosed on June 18, 2025, and affects multiple versions of IBM Sterling B2B Integrator, a widely used platform for secure B2B file transfers and integrations.

For European organizations, the exposure of sensitive information through browser caching in IBM Sterling B2B Integrator could lead to unauthorized disclosure of confidential business data, including transaction details, partner credentials, or other sensitive integration information. Given that Sterling B2B Integrator is often used in supply chain and financial data exchanges, such leaks could undermine trust relationships and compliance with data protection regulations such as GDPR. The local nature of the attack means that the threat is primarily from insiders or attackers who have gained local access to an endpoint used to access the Sterling interface. This could include compromised employee workstations or shared terminals. While the vulnerability does not directly allow remote exploitation or system compromise, the confidentiality breach could facilitate further attacks or data exfiltration. The impact is particularly relevant for organizations with strict data privacy requirements or those handling sensitive partner data. The lack of integrity or availability impact reduces the risk of operational disruption but does not diminish the importance of protecting sensitive information.

To mitigate this vulnerability, European organizations should implement the following specific measures: 1) Immediately review and update the caching policies on the web servers hosting IBM Sterling B2B Integrator interfaces to ensure that sensitive pages include appropriate HTTP headers such as 'Cache-Control: no-store, no-cache, must-revalidate' and 'Pragma: no-cache' to prevent browser caching of sensitive content. 2) Restrict local access to systems used to access Sterling B2B Integrator by enforcing strict endpoint security controls, including user authentication, session timeouts, and screen locking. 3) Educate users about the risks of leaving browsers open on shared or public machines and encourage the use of private/incognito browsing modes when accessing sensitive systems. 4) Monitor and audit local access logs for unusual activity that could indicate attempts to access cached data. 5) Apply any forthcoming patches or updates from IBM promptly once available. 6) Consider deploying endpoint security solutions that can detect and prevent unauthorized access to browser cache files or sensitive data remnants. 7) If feasible, isolate Sterling B2B Integrator access to dedicated, hardened workstations with minimal local user privileges to reduce the attack surface.