Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download

Comparison Overview

中建市政西北院中建市政西北院
VS
COLASCOLAS
中建市政西北院

中建市政西北院

甘肃省兰州市城关区, 定西路459号, Lanzhou, Gansu, CN

Last Update: 16/02/2026

View Profile
Between 750 and 799
http://www.xibeiyuan.com
756/1000Fair

主要经营业务板块:业务范围涵盖国内外基础设施建设行业各领域的咨询、规划、设计、监理、项目管理和工程总承包业务; 新业务拓展方向:近年来,在旅游规划设计、生态治理、水处理技术、城市综合管廊、地下空间与交通、桥梁与地铁轻轨等专业技术方面取得良好业绩。 主要经营区域(主要工作地点):立足兰州总部,在北京、上海、天津、重庆、浙江、江苏、广东、福建、湖南、湖北、陕西、新疆、内蒙、辽宁、四川、贵州、云南、广西、海南、山东、河南等地设有分院,为当地工程建设提供高品质、全过程服务。 中外合资:世界500强及全球最大建筑承包商——中国建筑工程总公司控...

NAICS:23
NAICS Definition:Construction
Employees:168
Subsidiaries:0
12-month incidents
0
Known data breaches
0
Attack type number
0
COLAS

COLAS

1, Rue du Colonel Pierre Avia, Paris, 75015, FR

Last Update: 01/04/2026

View Profile
Between 800 and 849
https://allinks.click/colas
841/1000Good

Colas, a subsidiary of the Bouygues Group, is a major player in the construction and maintenance of transportation infrastructure and urban development. Colas covers the entire value chain: from industrial production to service offerings, including construction work. ...

NAICS:23
NAICS Definition:Construction
Employees:16,508
Subsidiaries:119
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Ranges Comparison

Based On Specific Ai Models Category
中建市政西北院

中建市政西北院

-
ISO 27001Not verified
ISO 27001
-
SOC2 Type 1Not verified
SOC2 Type 1
-
SOC2 Type 2Not verified
SOC2 Type 2
-
GDPRNot verified
GDPR
-
PCI DSSNot verified
PCI DSS
-
HIPAANot verified
HIPAA
COLAS

COLAS

-
ISO 27001Not verified
ISO 27001
-
SOC2 Type 1Not verified
SOC2 Type 1
-
SOC2 Type 2Not verified
SOC2 Type 2
-
GDPRNot verified
GDPR
-
PCI DSSNot verified
PCI DSS
-
HIPAANot verified
HIPAA

Benchmark & Cyber Underwriting Signals

Incidents vs Construction Industry Avg (This Year)

No incidents recorded for 中建市政西北院 in 2026.

Incidents

Incidents vs Construction Industry Avg (This Year)

No incidents recorded for COLAS in 2026.

Incidents

Incident History - 中建市政西北院 (X = Date, Y = Severity)

中建市政西北院 cyber incidents detection timeline including parent company and subsidiaries.

No timeline data available
R - Ransomware
C - Cyber Attack
D - Data Breach
V - Vulnerability

Incident History - COLAS (X = Date, Y = Severity)

COLAS cyber incidents detection timeline including parent company and subsidiaries.

R - Ransomware
C - Cyber Attack
D - Data Breach
V - Vulnerability

Notable Incidents

Last Cyber / HR Incidents / Global...
中建市政西北院

中建市政西北院

Incidents
No explicit notable incidents reported.
COLAS

COLAS

Incidents
No explicit notable incidents reported.

FAQ

Between 中建市政西北院 company and COLAS company, which one has the best AI Cybersecurity Score ?
Between 中建市政西北院 company and COLAS company, which one has experienced more cyber incidents in the past ?
Between 中建市政西北院 company and COLAS company, which one has experienced more cyber incidents this year ?
Between 中建市政西北院 company and COLAS company, which one has experienced at least one ransomware attack ?
Between 中建市政西北院 company and COLAS company, which one has experienced at least one data breach ?
Between 中建市政西北院 company and COLAS company, which one has experienced at least one targeted cyberattack ?
Between 中建市政西北院 company and COLAS company, which one has experienced at least one vulnerability ?
Between 中建市政西北院 company and COLAS company, which one holds the most compliance certifications ?
Between 中建市政西北院 company and COLAS company, which one holds the fewest compliance certifications ?
Between 中建市政西北院 company and COLAS company, which one has the most subsidiaries ?
Between 中建市政西北院 company and COLAS company, which one has the largest number of employees ?
Between 中建市政西北院 and COLAS, which company holds both SOC 2 Type 1 certifications ?
Between 中建市政西北院 and COLAS, which company holds both SOC 2 Type 2 certifications ?
Which company is ISO 27001 certified - 中建市政西北院 or COLAS ?
Which company is PCI DSS compliant - 中建市政西北院 or COLAS ?
Between 中建市政西北院 and COLAS, which company complies with HIPAA regulations for healthcare data ?
Between 中建市政西北院 and COLAS, which company complies with GDPR requirements ?

Latest Global CVEs

CVE-2026-5270
SUMMARY

An authentication bypass vulnerability exists in certain releases of Ciena Navigator Network Control Suite (NCS), Manage Control Plan (MCP), and Blue Planet products. The issue is caused by improper handling of HTTP request paths and headers, which allows an unauthenticated attacker to manipulate requests in a manner that bypasses authentication and associated audit logging controls.

PUBLISHED
Date2026-07-14
UPDATED
Date2026-07-14
IMPACT SCORE
NA
EXPLOITABILITY
NA
CVE-2026-5269
SUMMARY

In Ciena's Navigator Network Control Suite (NCS) and Manage Control Plan (MCP), there are hidden system accounts used for internal software operations. Some of these accounts have default passwords that may be predictable. While these accounts have very limited permissions on their own, an attacker could combine an attack using one of these accounts with other potential weaknesses to launch a more significant attack, possibly leading to escalation of privilege on the system.

PUBLISHED
Date2026-07-14
UPDATED
Date2026-07-14
IMPACT SCORE
NA
EXPLOITABILITY
NA
CVE-2026-51808
SUMMARY

Buffer Overflow vulnerability in OpenHTJ2K v.0.18.4 and before allows an attacker to execute arbitrary code via the openhtj2k_decoder_impl::invoke, invoke_line_based, invoke_line_based_stream, and invoke_line_based_predecoded function in source/core/interface/decoder.cpp

PUBLISHED
Date2026-07-14
UPDATED
Date2026-07-14
IMPACT SCORE
NA
EXPLOITABILITY
NA
CVE-2026-51807
SUMMARY

Buffer Overflow vulnerability in OpenHTJ2K v.0.18.4 and before allows an attacker to execute arbitrary code via the j2k_precinct_subband::parse_packet_header() in source/core/coding/coding_units.cpp

PUBLISHED
Date2026-07-14
UPDATED
Date2026-07-14
IMPACT SCORE
NA
EXPLOITABILITY
NA
CVE-2026-36035
SUMMARY

Incorrect access control in the /api/License/deactivateOffline endpoint of CAXPerts UniversalPlantViewer WebServices Server v2.7.6 allows authenticated attackers with low-level privileges to cause a Denial of Service (DoS) via removing the license from the webserver.

PUBLISHED
Date2026-07-14
UPDATED
Date2026-07-14
IMPACT SCORE
NA
EXPLOITABILITY
NA