Comparison Overview
Aesop

Aesop
25 Smith Street, Collingwood, VIC, 3066, AU
Last Update: 20/01/2026
Aesop was established in Melbourne in 1987. Our objective has always been to formulate skin, body and hair care products of the finest quality, as well as fragrance and accessories for the self and home. All Aesop products are vegan. We do not test on animals and only u...

O Boticário
Av. Rui Barbosa, 4.110, Parque das Fontes,, São José dos Pinhais, 83.050-010, BR
Last Update: 04/04/2026
A beleza transforma, encanta, conquista e também pode ser conquistada. Eis o ideal de beleza que O Boticário multiplica com seus produtos, lojas e em sua relação com o público. Desde 1977, O Boticário soma inspiração, ousadia, inovação e qualidade, despertando o respei...
Compliance Ranges Comparison

Aesop







O Boticário






Benchmark & Cyber Underwriting Signals
Incidents vs Personal Care Product Manufacturing Industry Avg (This Year)
No incidents recorded for Aesop in 2026.
Incidents vs Personal Care Product Manufacturing Industry Avg (This Year)
No incidents recorded for O Boticário in 2026.
Incident History - Aesop (X = Date, Y = Severity)
Aesop cyber incidents detection timeline including parent company and subsidiaries.
Incident History - O Boticário (X = Date, Y = Severity)
O Boticário cyber incidents detection timeline including parent company and subsidiaries.
Notable Incidents

Aesop

O Boticário
FAQ
Latest Global CVEs
Improper access control in Microsoft Edge for Android allows an unauthorized attacker to bypass a security feature over a network.
A security vulnerability has been detected in NousResearch hermes-agent up to 2026.4.30. Affected is the function GatewayStreamConsumer._filter_and_accumulate of the file gateway/stream_consumer.py of the component Streaming Reasoning Tag Filter. The manipulation leads to improper handling of case sensitivity. The attack may be initiated remotely. The attack's complexity is rated as high. The exploitability is told to be difficult. The exploit has been disclosed publicly and may be used. The project decided to not implement a dedicated fix: "[T]he analysis and the fix are both sound. It just lands below the bar for the maintenance cost of a duplicated scrub path."
- https://gist.github.com/YLChen-007/2229e5505bcbb3e15a7ae8fba4c4be37
- https://github.com/NousResearch/hermes-agent/
- https://github.com/NousResearch/hermes-agent/issues/27288
- https://github.com/NousResearch/hermes-agent/pull/28631#issuecomment-4622188016
- https://vuldb.com/cve/CVE-2026-14617
- https://vuldb.com/submit/844654
- https://vuldb.com/vuln/376134
- https://vuldb.com/vuln/376134/cti
Insufficient ui warning of dangerous operations in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.
Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.
Relative path traversal in Microsoft Edge for Android allows an unauthorized attacker to disclose information locally.