Comparison Overview
Яндекс Лавка

Яндекс Лавка
N/A
Last Update: 02/04/2026
Яндекс Лавка — сервис экспресс-доставки продуктов и готовой еды из дарксторов. Это как магазин у дома, только не надо никуда ходить. Мы делаем проект сами от начала до конца, используя современный стек и технологии. Сейчас Лавка быстро развивается, поэтому мы всё время...

NCS Group
Singapore, 5 Ang Mo Kio Street 62, NCS Hub, Singapore, SG, 569141
Last Update: 01/04/2026
NCS, a subsidiary of Singtel Group, is a leading technology services firm with presence in Asia Pacific and partners with governments and enterprises to advance communities through technology. Combining the experience and expertise of its 14,000-strong team across 56 sp...
Compliance Ranges Comparison

Яндекс Лавка







NCS Group






Benchmark & Cyber Underwriting Signals
Incidents vs IT Services and IT Consulting Industry Avg (This Year)
No incidents recorded for Яндекс Лавка in 2026.
Incidents vs IT Services and IT Consulting Industry Avg (This Year)
No incidents recorded for NCS Group in 2026.
Incident History - Яндекс Лавка (X = Date, Y = Severity)
Яндекс Лавка cyber incidents detection timeline including parent company and subsidiaries.
Incident History - NCS Group (X = Date, Y = Severity)
NCS Group cyber incidents detection timeline including parent company and subsidiaries.
Notable Incidents

Яндекс Лавка

NCS Group
FAQ
Latest Global CVEs
An authentication bypass vulnerability exists in certain releases of Ciena Navigator Network Control Suite (NCS), Manage Control Plan (MCP), and Blue Planet products. The issue is caused by improper handling of HTTP request paths and headers, which allows an unauthenticated attacker to manipulate requests in a manner that bypasses authentication and associated audit logging controls.
In Ciena's Navigator Network Control Suite (NCS) and Manage Control Plan (MCP), there are hidden system accounts used for internal software operations. Some of these accounts have default passwords that may be predictable. While these accounts have very limited permissions on their own, an attacker could combine an attack using one of these accounts with other potential weaknesses to launch a more significant attack, possibly leading to escalation of privilege on the system.
Buffer Overflow vulnerability in OpenHTJ2K v.0.18.4 and before allows an attacker to execute arbitrary code via the openhtj2k_decoder_impl::invoke, invoke_line_based, invoke_line_based_stream, and invoke_line_based_predecoded function in source/core/interface/decoder.cpp
Buffer Overflow vulnerability in OpenHTJ2K v.0.18.4 and before allows an attacker to execute arbitrary code via the j2k_precinct_subband::parse_packet_header() in source/core/coding/coding_units.cpp
Incorrect access control in the /api/License/deactivateOffline endpoint of CAXPerts UniversalPlantViewer WebServices Server v2.7.6 allows authenticated attackers with low-level privileges to cause a Denial of Service (DoS) via removing the license from the webserver.