Comparison Overview

Administrative Office of the United States Courts

VS

Maryland Judiciary

Administrative Office of the United States Courts

1 Columbus Circle Northeast, None, Washington, District of Columbia, US, 20002
Last Update: 2025-12-02
View Profile
Between 0 and 549
http://www.uscourts.gov

The Administrative Office of the U.S. Courts (AO) is the administrative arm of the federal Judiciary, and provides a broad range of legislative, legal, financial, technology, management, and program support services to federal courts. The Administrative Office is responsible for carrying out policies approved by the Judicial Conference, the federal Judiciary’s policy-making body. The AO also provides staff support and counsel to the Judicial Conference and its committees. The diverse group of employees strives to be the most effective service organization in government – a team that is trusted, respected, and accountable. We invite you to learn more about us and join the people who work to help ensure equal justice under the law.

NAICS: 92211
NAICS Definition: Courts
Employees: 834
Subsidiaries: 0
12-month incidents
3
Known data breaches
5
Attack type number
2
View Profile

Maryland Judiciary

187 Harry S Truman Pkwy, Annapolis, 21401, US
Last Update: 2025-12-04
Between 750 and 799
http://www.mdcourts.gov/careers

Mission & Vision: Mission The Maryland Judiciary provides fair, efficient and effective justice for all. Vision The Maryland Judiciary advances justice for all who come to Maryland’s courts. We are an efficient, innovative and accessible court system that works collaboratively with justice partners to serve the people with integrity and transparency. Goals: Provide access to justice Be responsive and adaptable to changing community needs Communicate effectively with stakeholders Improve systems and processes Be accountable Assure the highest level of service Build partnerships Use resources wisely

NAICS: 92211
NAICS Definition: Courts
Employees: 1,167
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/administrative-office-of-the-united-states-courts.jpeg
Administrative Office of the United States Courts
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/maryland-judiciary.jpeg
Maryland Judiciary
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Administrative Office of the United States Courts
100%
Compliance Rate
0/4 Standards Verified
Maryland Judiciary
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Administration of Justice Industry Average (This Year)

Administrative Office of the United States Courts has 400.0% more incidents than the average of same-industry companies with at least one recorded incident.

Incidents vs Administration of Justice Industry Average (This Year)

No incidents recorded for Maryland Judiciary in 2025.

Incident History — Administrative Office of the United States Courts (X = Date, Y = Severity)

Administrative Office of the United States Courts cyber incidents detection timeline including parent company and subsidiaries

Incident History — Maryland Judiciary (X = Date, Y = Severity)

Maryland Judiciary cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/administrative-office-of-the-united-states-courts.jpeg
Administrative Office of the United States Courts
Incidents

Date Detected: 8/2025
Type:Breach
Attack Vector: Unknown (likely multi-vector due to diverse threat actors), Potential exploitation of systemic vulnerabilities in federal IT infrastructure
Motivation: Espionage, Criminal Exploitation (e.g., witness intimidation, investigation sabotage), Financial Gain (potential dark web data sales), Strategic Advantage (nation-state actors)
Blog: Blog

Date Detected: 8/2025
Type:Breach
Motivation: Espionage, disruption, or influence
Blog: Blog

Date Detected: 7/2025
Type:Cyber Attack
Blog: Blog
https://images.rankiteo.com/companyimages/maryland-judiciary.jpeg
Maryland Judiciary
Incidents

No Incident

FAQ

Maryland Judiciary company demonstrates a stronger AI Cybersecurity Score compared to Administrative Office of the United States Courts company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Administrative Office of the United States Courts company has historically faced a number of disclosed cyber incidents, whereas Maryland Judiciary company has not reported any.

In the current year, Administrative Office of the United States Courts company has reported more cyber incidents than Maryland Judiciary company.

Neither Maryland Judiciary company nor Administrative Office of the United States Courts company has reported experiencing a ransomware attack publicly.

Administrative Office of the United States Courts company has disclosed at least one data breach, while the other Maryland Judiciary company has not reported such incidents publicly.

Administrative Office of the United States Courts company has reported targeted cyberattacks, while Maryland Judiciary company has not reported such incidents publicly.

Neither Administrative Office of the United States Courts company nor Maryland Judiciary company has reported experiencing or disclosing vulnerabilities publicly.

Neither Administrative Office of the United States Courts nor Maryland Judiciary holds any compliance certifications.

Neither company holds any compliance certifications.

Neither Administrative Office of the United States Courts company nor Maryland Judiciary company has publicly disclosed detailed information about the number of their subsidiaries.

Maryland Judiciary company employs more people globally than Administrative Office of the United States Courts company, reflecting its scale as a Administration of Justice.

Neither Administrative Office of the United States Courts nor Maryland Judiciary holds SOC 2 Type 1 certification.

Neither Administrative Office of the United States Courts nor Maryland Judiciary holds SOC 2 Type 2 certification.

Neither Administrative Office of the United States Courts nor Maryland Judiciary holds ISO 27001 certification.

Neither Administrative Office of the United States Courts nor Maryland Judiciary holds PCI DSS certification.

Neither Administrative Office of the United States Courts nor Maryland Judiciary holds HIPAA certification.

Neither Administrative Office of the United States Courts nor Maryland Judiciary holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

A vulnerability has been found in TykoDev cherry-studio-TykoFork 0.1. This issue affects the function redirectToAuthorization of the file /.well-known/oauth-authorization-server of the component OAuth Server Discovery. Such manipulation of the argument authorizationUrl leads to os command injection. The attack can be executed remotely. The exploit has been disclosed to the public and may be used.

Published
Date
2025-12-07
Updated
Date
2025-12-07
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A flaw has been found in code-projects Question Paper Generator up to 1.0. This vulnerability affects unknown code of the file /selectquestionuser.php. This manipulation of the argument subid causes sql injection. Remote exploitation of the attack is possible. The exploit has been published and may be used.

Published
Date
2025-12-07
Updated
Date
2025-12-07
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was found in alokjaiswal Hotel-Management-services-using-MYSQL-and-php up to 5f8b60a7aa6c06a5632de569d4e3f6a8cd82f76f. Affected by this vulnerability is an unknown functionality of the file /dishsub.php. The manipulation of the argument item.name results in cross site scripting. It is possible to launch the attack remotely. The exploit has been made public and could be used. This product takes the approach of rolling releases to provide continious delivery. Therefore, version details for affected and updated releases are not available. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-12-07
Updated
Date
2025-12-07
Risk Information
cvss2
Base: 3.3
Severity: LOW
AV:N/AC:L/Au:M/C:N/I:P/A:N
cvss3
Base: 2.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 4.8
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability has been found in alokjaiswal Hotel-Management-services-using-MYSQL-and-php up to 5f8b60a7aa6c06a5632de569d4e3f6a8cd82f76f. Affected is an unknown function of the file /usersub.php of the component Request Pending Page. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. This product is using a rolling release to provide continious delivery. Therefore, no version details for affected nor updated releases are available. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-12-07
Updated
Date
2025-12-07
Risk Information
cvss2
Base: 4.0
Severity: LOW
AV:N/AC:L/Au:S/C:N/I:P/A:N
cvss3
Base: 3.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 5.1
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A flaw has been found in Verysync 微力同步 up to 2.21.3. This impacts an unknown function of the file /rest/f/api/resources/f96956469e7be39d/tmp/text.txt?override=false of the component Web Administration Module. Executing manipulation can lead to unrestricted upload. The attack may be performed from remote. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-12-07
Updated
Date
2025-12-07
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References