Comparison Overview

Absher Construction Company

VS

Andrade Gutierrez S.A.

Absher Construction Company

1001 Shaw Road, None, Puyallup, WA, US, 98372
Last Update: 2025-07-27 (UTC)
Between 900 and 1000
http://www.AbsherCo.com

Excellent

Founded in 1940, Absher Construction Company is one of the northwest's oldest and most diverse construction organizations. Absher is headquartered in Puyallup, WA. Core Purpose To create and build community through teamwork, leadership and experience. Core Values We Care About People. We Are Servant Leaders. We Do Things Right. We Do Right Things.

NAICS: 23
NAICS Definition: Construction
Employees: 285
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
1

Andrade Gutierrez S.A.

Avª das Nações Unidas 12495, São Paulo, SP, 04578-000, BR
Last Update: 2025-03-05 (UTC)

Excellent

Between 900 and 1000
http://www.andradegutierrez.com.br

Fundada em Belo Horizonte, Minas Gerais, a Andrade Gutierrez tem reconhecida expertise no segmento de construção pesada. Na década de 1990 iniciou a diversificação dos negócios com investimentos nas áreas de Concessões e Telecomunicações. Hoje o Grupo Andrade Gutierrez é um dos maiores conglomerados de infraestrutura na América Latina e acumula projetos realizados em mais de 40 países. Participa como investidora em empresas como Oi e Contax (AG Telecom), CCR, Sanepar, e Cemig (AG Investimentos). AG Jovem: www.agjovem.com.br Facebook: https://www.facebook.com/AndradeGutierrezSA Twitter: https://twitter.com/Grupo_AG Youtube: http://www.youtube.com/user/AndradeGutierrez

NAICS: 23
NAICS Definition: Construction
Employees: 10,440
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/absher-construction.jpeg
Absher Construction Company
ISO 27001
Not verified
SOC 2
Not verified
GDPR
No public badge
PCI DSS
No public badge
https://images.rankiteo.com/companyimages/andrade-gutierrez.jpeg
Andrade Gutierrez S.A.
ISO 27001
Not verified
SOC 2
Not verified
GDPR
No public badge
PCI DSS
No public badge
Compliance Summary
Absher Construction Company
100%
Compliance Rate
0/4 Standards Verified
Andrade Gutierrez S.A.
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Construction Industry Average (This Year)

No incidents recorded for Absher Construction Company in 2025.

Incidents vs Construction Industry Average (This Year)

No incidents recorded for Andrade Gutierrez S.A. in 2025.

Incident History — Absher Construction Company (X = Date, Y = Severity)

Absher Construction Company cyber incidents detection timeline including parent company and subsidiaries

Incident History — Andrade Gutierrez S.A. (X = Date, Y = Severity)

Andrade Gutierrez S.A. cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/absher-construction.jpeg
Absher Construction Company
Incidents

Date Detected: 8/2020
Type:Cyber Attack
Attack Vector: Malware
Blog: Blog
https://images.rankiteo.com/companyimages/andrade-gutierrez.jpeg
Andrade Gutierrez S.A.
Incidents

No Incident

FAQ

Both Absher Construction Company company and Andrade Gutierrez S.A. company demonstrate a comparable AI risk posture, with strong governance and monitoring frameworks in place.

Absher Construction Company company has historically faced a number of disclosed cyber incidents, whereas Andrade Gutierrez S.A. company has not reported any.

In the current year, Andrade Gutierrez S.A. company and Absher Construction Company company have not reported any cyber incidents.

Neither Andrade Gutierrez S.A. company nor Absher Construction Company company has reported experiencing a ransomware attack publicly.

Neither Andrade Gutierrez S.A. company nor Absher Construction Company company has reported experiencing a data breach publicly.

Absher Construction Company company has reported targeted cyberattacks, while Andrade Gutierrez S.A. company has not reported such incidents publicly.

Neither Absher Construction Company company nor Andrade Gutierrez S.A. company has reported experiencing or disclosing vulnerabilities publicly.

Neither Absher Construction Company company nor Andrade Gutierrez S.A. company has publicly disclosed detailed information about the number of their subsidiaries.

Andrade Gutierrez S.A. company employs more people globally than Absher Construction Company company, reflecting its scale as a Construction.

Latest Global CVEs (Not Company-Specific)

Description

A weakness has been identified in bftpd up to 6.2. Impacted is the function expand_groups of the file options.c of the component Configuration File Handler. Executing manipulation can lead to heap-based buffer overflow. It is possible to launch the attack on the local host. Attacks of this nature are highly complex. The exploitability is considered difficult. The exploit has been made available to the public and could be exploited. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-10-19
Updated
Date
2025-10-19
Risk Information
cvss2
Base: 3.5
Severity: HIGH
AV:L/AC:H/Au:S/C:P/I:P/A:P
cvss3
Base: 4.5
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 2.0
Severity: HIGH
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A security flaw has been discovered in LogicalDOC Community Edition up to 9.2.1. This issue affects some unknown processing of the file /frontend.jsp of the component Add Contact Page. Performing manipulation of the argument First Name/Last Name/Company/Address/Phone/Mobile results in cross site scripting. Remote exploitation of the attack is possible. The exploit has been released to the public and may be exploited. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-10-19
Updated
Date
2025-10-19
Risk Information
cvss2
Base: 4.0
Severity: LOW
AV:N/AC:L/Au:S/C:N/I:P/A:N
cvss3
Base: 3.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 5.1
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was identified in toeverything AFFiNE up to 0.24.1. This vulnerability affects unknown code of the component Avatar Upload Image Endpoint. Such manipulation leads to cross site scripting. The attack may be launched remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-10-19
Updated
Date
2025-10-19
Risk Information
cvss2
Base: 4.0
Severity: LOW
AV:N/AC:L/Au:S/C:N/I:P/A:N
cvss3
Base: 3.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 5.1
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was determined in givanz Vvveb up to 1.0.7.3. This affects the function Import of the file admin/controller/tools/import.php of the component Raw SQL Handler. This manipulation causes sql injection. The attack may be initiated remotely. The exploit has been publicly disclosed and may be utilized. Patch name: 52204b4a106b2fb02d16eee06a88a1f2697f9b35. It is recommended to apply a patch to fix this issue.

Published
Date
2025-10-19
Updated
Date
2025-10-19
Risk Information
cvss2
Base: 5.8
Severity: LOW
AV:N/AC:L/Au:M/C:P/I:P/A:P
cvss3
Base: 4.7
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.1
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability has been found in 70mai X200 up to 20251010. Affected by this vulnerability is an unknown functionality of the component HTTP Web Server. The manipulation leads to use of default credentials. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-10-19
Updated
Date
2025-10-19
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References