What is ALL - Accor Live Limitless's cybersecurity risk score?

ALL - Accor Live Limitless has an AI-generated cybersecurity risk score of 755 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has ALL - Accor Live Limitless experienced?

According to Rankiteo, ALL - Accor Live Limitless currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has ALL - Accor Live Limitless been affected by any supply chain cyber incidents ?

According to Rankiteo, ALL - Accor Live Limitless has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does ALL - Accor Live Limitless have SOC 2 Type 1 certification ?

According to Rankiteo, ALL - Accor Live Limitless is not certified under SOC 2 Type 1.

Does ALL - Accor Live Limitless have SOC 2 Type 2 certification ?

According to Rankiteo, ALL - Accor Live Limitless does not hold a SOC 2 Type 2 certification.

Does ALL - Accor Live Limitless comply with GDPR ?

According to Rankiteo, ALL - Accor Live Limitless is not listed as GDPR compliant.

Does ALL - Accor Live Limitless have PCI DSS certification ?

According to Rankiteo, ALL - Accor Live Limitless does not currently maintain PCI DSS compliance.

Does ALL - Accor Live Limitless comply with HIPAA ?

According to Rankiteo, ALL - Accor Live Limitless is not compliant with HIPAA regulations.

Does ALL - Accor Live Limitless have ISO 27001 certification ?

According to Rankiteo,ALL - Accor Live Limitless is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does ALL - Accor Live Limitless operate in ?

ALL - Accor Live Limitless operates primarily in the Travel Arrangements industry.

How many employees does ALL - Accor Live Limitless have ?

ALL - Accor Live Limitless employs approximately 1 people worldwide.

Does ALL - Accor Live Limitless own any subsidiaries ?

ALL - Accor Live Limitless presently has no subsidiaries across any sectors.

How many LinkedIn followers does ALL - Accor Live Limitless have ?

ALL - Accor Live Limitless's official LinkedIn profile has approximately 124,844 followers.

What is the NAICS classification code for ALL - Accor Live Limitless ?

ALL - Accor Live Limitless is classified under the NAICS code 5615, which corresponds to Travel Arrangement and Reservation Services.

Does ALL - Accor Live Limitless have a Crunchbase profile ?

No, ALL - Accor Live Limitless does not have a profile on Crunchbase.

Does ALL - Accor Live Limitless have a LinkedIn profile ?

Yes, ALL - Accor Live Limitless maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/all-accorlivelimitless.

How many cybersecurity incidents has ALL - Accor Live Limitless experienced ?

As of June 30, 2026, Rankiteo reports that ALL - Accor Live Limitless has experienced 1 cybersecurity incidents.

How many peer or competitor companies does ALL - Accor Live Limitless have ?

ALL - Accor Live Limitless has an estimated 4,990 peer or competitor companies worldwide.

What types of cybersecurity incidents has ALL - Accor Live Limitless faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Breach.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

ALL

Boost Score +25 with badge (5 left)

755

/1000

Fair

780

/1000

Fair

ALL - Accor Live Limitless Vendor Cyber Rating & Cyber Score

accor.com

Add Your Compliance Badge

Explore a world of breathtaking locations and get inspired by one of our 5.500 properties and 40+ hotel brands in 110+ countries, from luxury to economy. Discover the ultimate lifestyle loyalty program and dive in a world of Hotels, Experiences & Rewards Book your next stay on all.com and unlock a world of limitless experiences. #LiveLimitless

ALL A.I CyberSecurity Scoring

Scoring History

ALL

ALL - Accor Live Limitless CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

ALL - Accor Live Li...

Breach

06/2018

DED456251223

Loading…

A.I.

ALL Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for ALL

Incidents vs Travel Arrangements Industry Avg (This Year)

No incidents recorded for ALL - Accor Live Limitless in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for ALL - Accor Live Limitless in 2026.

Incident Types ALL vs Travel Arrangements Industry Avg (This Year)

No incidents recorded for ALL - Accor Live Limitless in 2026.

Incident History - ALL (X = Date, Y = Severity)

Loading…

SUBSIDIARY

ALL - Accor Live Limitless Subsidiaries

ALL

Travel Arrangements

Website: https://all.accor.com/.go?merchantid=sop-in&sourceid=ach-2304-allcom-ALL-EN&utm_source=Linkedin&utm_medium=social+paid&utm_campaign=allcom&utm_content=ALL-EN-ALL-ALL

Company Size: 1

115

AccorHospitality

Fairmont Hotels & ResortsHospitality

Raffles Hotels & ResortsHospitality

Le Royal Monceau - Raffles ParisHospitality

Raffles DubaiHospitality

Raffles Hotel SingaporeHospitality

Raffles Makkah PalaceHospitality

Raffles SeychellesHospitality

Raffles Hotel Le Royal, Phnom PenhHospitality

Raffles Grand Hotel d'AngkorHospitality

Accor - North & Central AmericaHospitality

The Rimrock Resort HotelHospitality

Swissôtel Hotels & ResortsHospitality

Fairmont Singapore & Swissôtel The StamfordHospitality

Swissotel LimaHospitality

Swissôtel Büyük Efes, İzmirHospitality

Swissôtel Resort Bodrum BeachHospitality

Swissôtel MakkahHospitality

Swissôtel SydneyHospitality

Swissôtel AmsterdamHospitality

Swissôtel KolkataHospitality

Swissôtel ChicagoHospitality

Swissôtel Merchant Court, SingaporeHospitality

Swissôtel Nankai OsakaHospitality

Swissôtel QuitoHospitality

Swissôtel Le Plaza Basel (4**** superior)Hospitality

Swissôtel Tallinn, EstoniaHospitality

The SavoyHospitality

Fairmont DubaiHospitality

Fairmont JaipurHospitality

Fairmont MayakobaHospitality

Fairmont Bab Al Bahr, Abu DhabiHospitality

Makkah Clock Royal Tower, A Fairmont HotelHospitality

Fairmont Banff SpringsHospitality

Fairmont Monte CarloHospitality

Fairmont Jasper Park LodgeHospitality

Fairmont AmmanHospitality

Fairmont Mount Kenya Safari ClubHospitality

Fairmont Hotel VancouverHospitality

Fairmont Le Château FrontenacHospitality

Fairmont The Queen ElizabethHospitality

Fairmont Chateau Lake LouiseHospitality

Fairmont Pacific RimHospitality

Fairmont Chateau WhistlerHospitality

Fairmont Nile CityHospitality

Fairmont Le Montreux PalaceHospitality

The Plaza, A Fairmont Managed HotelHospitality

Fairmont Baku, Flame TowersHospitality

Fairmont Scottsdale PrincessHospitality

Meetings at the PrincessHospitality

Fairmont Le Manoir RichelieuHospitality

Fairmont WaterfrontHospitality

Fairmont San FranciscoHospitality

Fairmont St AndrewsHospitality

Fairmont Heliopolis & TowersHospitality

Fairmont MakatiHospitality

Fairmont PalliserHospitality

Fairmont Hotel MacdonaldHospitality

Fairmont Olympic HotelHospitality

Fairmont SouthamptonHospitality

Fairmont Château LaurierHospitality

Fairmont Orchid, HawaiiHospitality

Fairmont Le Château MontebelloHospitality

Fairmont Mara Safari ClubHospitality

Fairmont Kea Lani MauiHospitality

Claremont Resort & ClubHospitality

Fairmont Sonoma Mission Inn & SpaHospitality

Hamilton Princess & Beach Club, a Fairmont Managed HotelHospitality

Fairmont Vancouver AirportHospitality

Fairmont Copley Plaza BostonHospitality

Fairmont Washington, D.C.Hospitality

Sheraton Suites Calgary Eau ClaireHospitality

Fairmont Chicago, Millennium ParkHospitality

Fairmont Peace HotelAccounting

Fairmont Zimbali Lodge and ResortHospitality

Fairmont Yangcheng LakeHospitality

Fairmont DallasHospitality

Fairmont Heritage Place, Ghirardelli SquareHospitality

Fairmont PittsburghHospitality

Global Events & Meetings Solutions, Fairmont Raffles SwissotelHospitality

Fairmont Heritage Place, At Nature's DoorHospitality

Fairmont Heritage Place, Acapulco DiamanteHospitality

Fairmont Royal PavilionHospitality

Fairmont Heritage Place, InspirationHospitality

Fairmont The NorfolkHospitality

Fairmont WinnipegHospitality

Fairmont Grand Hotel KyivHospitality

Fairmont TremblantHospitality

Fairmont Miramar Hotel & BungalowsHospitality

Fairmont BeijingHospitality

Fairmont Royal YorkHospitality

Pullman Hotels & ResortsHospitality

Mövenpick Hotels & ResortsHospitality

MGallery Hotel CollectionHospitality

Loading…

ALL - Accor Live Limitless Similar Companies

Hertz

cb hertz.com

Hertz is one of the world’s largest mobility companies, and through its indirect subsidiary, The Hertz Corporation, operates the Hertz, Dollar, and Thrifty vehicle rental brands throughout North America, Europe, the Caribbean, Latin America, Africa, the Middle East, Asia, Australia, and New Zealand. Hertz pioneered the car rental industry, and the Hertz brand is one of the most recognized brands globally. For more than a century, Hertz has offered innovative, differentiated products in an effort to make every rental experience seamless and special. Customers choose Hertz for its wide selection of top-rated vehicles, for its free Hertz Gold Plus Rewards® loyalty program, and because of Hertz’s thousands of convenient locations. Hertz also operates the Firefly car rental brand and Hertz 24/7 car sharing business in international markets and additionally rents vehicles to rideshare drivers through dedicated partnerships with Uber, Lyft, and others. Hertz also sells vehicles to consumers at Hertz Car Sales locations throughout the United States.

Enterprise Mobility

enterprisemobility.com

At Enterprise Mobility™ we are paving a new way forward by creating better experiences for how we move. We give people around the world the ability to connect in ways that suit their unique needs. It’s a bold idea that has defined our purpose-led, people-first organization for over 65 years, and it’s one that we continue to strive toward with every journey. Through our trusted brands and our portfolio of offerings, we aim to reach the highest levels of customer service with each interaction. And we invest in — and care about — each other, our communities and every journey. It’s a point of pride and distinction, rooted in our origins. It’s how we grew from a pioneer with a fleet of seven cars to a global mobility leader with more than 90,000 team members around the world. And it’s what will continue to drive the future of the organization and mobility itself. Over the years, we’ve learned moving forward isn’t a simple matter of going from point A to B. Today, mobility is the movement of people and goods. It goes beyond the vehicles we drive to encompass an integrated way of travel that meets every individual’s unique needs and preferences. That is why it’s our vision to be the world’s best and most trusted mobility company. As mobility continues to evolve, we'll continue to innovate to work toward a reimagined mobility future that is more accessible, efficient and sustainable for all.

Europcar Mobility Group

europcar-mobility-group.com

Europcar Mobility Group is a global mobility player, with 75 years of mobility services expertise and a leading position in Europe. “We help to change the way you move” is what we stand for and brings us together. More than ever, we're committed to delivering simple, seamless, innovative solutions that make mobility easy, enjoyable and increasingly eco-friendly. To do this, we offer to individuals and businesses a wide range of car and van rental services, be it for a few hours, a few days, a week, a month or more, on-demand or on subscription, relying on a fleet of more than 250.000 vehicles, equipped with the latest engines including an increasing share of electric vehicles. Our brands address differentiated needs, use cases and expectations: Europcar® - a global leader of car rental and light commercial vehicle rental, Goldcar® - a frontrunner at providing low-cost car rental services in Europe, and Fox Rent A Car®, one of the main players in the car rental market in the US, with a "value for money" positioning. The Group also operates the "myEuropcar" platform for vehicle subscription, and "Europcar on Demand", a roundtrip car-sharing service present in key cities in Europe. Customers’ satisfaction is at the heart of the Group’s ambition and that of our more than 8,000 employees, everywhere we deliver our mobility solutions, thanks to a strong network in over 130 countries (including 16 wholly owned subsidiaries completed by franchisees and alliance partners).

Avis Budget Group

cb avisbudgetgroup.com

Avis Budget Group, Inc. is a leading global provider of transportation solutions, both through its Avis and Budget brands, which have more than 11,000 rental locations in approximately 180 countries around the world, and through its Zipcar brand, which is the world's leading car sharing network, with more than one million members. Avis Budget Group operates most of its car rental offices in North America, Europe and Australasia directly, and operates primarily through licensees in other parts of the world. Avis Budget Group is headquartered in Parsippany, N.J.

Princess Cruises

spr.ly

Princess is the world’s leading premium cruise line operating a fleet of modern ships visiting over 380 destinations around the globe on more than 160 itineraries. Each moment on Princess is one of wonderful discovery where guests can relax and explore. The choices are endless, from invigorating activities to more relaxing pursuits, and enable guests to share special moments with family and friends and enjoy unique travel experiences that create inspiring memories. At the forefront of innovation, Princess MedallionClass elevates service levels through enhanced guest experiences before and during cruise vacations. Exciting career opportunities in many departments await your discovery. Whether you are in customer service, food and beverage, or fleet operations (just to name a few), we’re certain you will find a career path at Princess Cruises that will keep you engaged and growing for years to come. Teams on shore support colleagues onboard, as together we create memorable experiences—dining, entertainment, exploration, and celebration—for our guests. Exceptional customer service is the cornerstone of our success thanks to more than 30,000 of the cruise industry’s finest team members on land and at sea. We create a friendly and welcoming environment not only for our onboard guests, but for our seagoing and land-based teams as well. The result is a remarkable number of loyal staff. We respect the seas we sail and destinations we visit. Our ships adhere to international rules regulating operations from fire safety to navigation, maritime security, and environmental stewardship. Onboard medical facilities meet or exceed standards set by the American College of Emergency Physicians. There’s no limit to how far you can go with Princess Cruises!

Costa Crociere S.p.A.

costacrociere.it

Costa belongs to the Carnival Corporation & plc Group, listed on the London and New York stock exchanges, the largest cruise company in the world. Costa, the only Italian cruise company flying the Italian flag, has been sailing the world’s seas for more than 75 years, offering its guests a different destination every day to explore via unique experiences, both on board and on land. Over 70 years of pioneering in our Industry are a great starting point. But what truly matters is what comes next. Constant evolution. New ideas and sustainable innovations. Transformations that will deliver outstanding value for Costa, our people and unparalleled experiences for all our guests. It’s an exciting journey we’re all on. What makes it possible is our unwavering ambition for excellence. Our enthusiasm, creativity and our passion. The drive to create human connections of our 17,000+ diverse multicultural global community. Together, we are empowered and driven to push ahead of the competition and redefine what excellence and success looks like for us. Each day we get a chance to live our passion and are empowered to make dreams come true – for our guests, for our communities and for ourselves. This is what unites us all, fulfils us, and makes us feel like we truly belong. Interested in joining Costa? Explore our career opportunities by visiting the Our Opportunities section on our website. If you're an early career professional or a recent graduate, discover dedicated programs and initiatives in the Costa Campus section, our gateway for young talent. For more information, feel free to contact our recruiting team at [email protected].

Carnival Cruise Line

carnival.com

Since our founding in 1972, Carnival Cruise Line — "The World’s Most Popular Cruise Line®” — carries millions of passengers every year. We offer a fun and unique career destination for a wide range of professionals in Marketing, IT, Accounting/Audit, Finance, Marine Operations and Human Resources, just to mention a few. We also offer remote opportunities flexibility for select positions. Headquartered in sunny South Florida, team members have access to a multi-station cafeteria, Starbucks (with cafecitos! - It's a Miami thing...), car wash, in-person TechBar services, an onsite floral vendor and a fully equipped gym. We offer top of line benefits including: health, dental, 401K matching, commitment to continued learning & development, employee stock purchase discount, cruise discounts for employees and more! We are committed to a culture of diversity, equity and inclusion for our shoreside and shipboard team members, as well as our guests. We are proud to be part of a family of companies owned by Carnival Corporation & plc, a Fortune 200 Company, which includes sister lines Princess Cruises, Holland America Line and Cunard Line, among others. We pride ourselves on delivering fun, memorable vacations to our guests by offering a wide array of quality cruises which present outstanding value for the money.

BCD Travel

bcdtravel.com

BCD Travel helps companies travel smart and achieve more. We drive program adoption, cost savings and talent retention through digital experiences that simplify business travel. Our 15,000+ dedicated team members service clients in 170+ countries as we shape a sustainable future for business travel. BCD’s leading meetings and events management and global consultancy services complete our comprehensive suite of solutions for all aspects of corporate travel. In 2024, BCD achieved US$22.9 billion in sales. For more information, visit our website. You can also subscribe to our newsletter for the latest industry insights, thought-leader analysis and top tips to drive your successful travel program. Go to: http://ow.ly/N73i50Mhc9Y

American Express Global Business Travel

cb amexgbt.com

Business travel doesn’t just move people from A to B, it helps ideas and innovation move forward, too. And with the most valuable marketplace, software, and services in travel, there is nowhere they can’t go with American Express Global Business Travel. With us, your Great Ideas Travel. GBT Travel Services UK Limited (GBT UK) and its authorized sublicensees (including Ovation Travel Group, Egencia and CWT) use certain trademarks and service marks of American Express Company or its subsidiaries (American Express) in the “American Express Global Business Travel” and “American Express GBT Meetings & Events” brands and in connection with its business for permitted uses only under a limited license from American Express (Licensed Marks). The Licensed Marks are trademarks or service marks of, and the property of, American Express. GBT UK is a subsidiary of Global Business Travel Group, Inc. (NYSE: GBTG). American Express holds a minority interest in GBTG, which operates as a separate company from American Express.

Loading…

NEWS

ALL - Accor Live Limitless CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

April 10, 2025 07:00 AM

ALL-Accor Live Limitless: The Complete Guide

Though ALL-Accor Live Limitless might get less attention than some hotel rewards programs, ALL points can offer high value if you know how...

Read Article

January 21, 2025 08:00 AM

Andrew Steele appointed Managing Director of Raffles Doha & Fairmont Doha

Raffles Doha and Fairmont Doha are delighted to announce the appointment of Andrew Steele as Managing Director, ushering in a new era of luxury and excellence.

Read Article

November 24, 2023 08:00 AM

ALL-Accor Live Limitless treats members to 'Laughter On The Menu' comedy tour with Atul Khatri

ALL-Accor Live Limitless, a lifestyle loyalty programme by Accor, recently regaled its members with the last chapter of "Laughter On The...

Read Article

April 11, 2023 07:00 AM

ALL – Accor Live Limitless sponsors 2023 Rugby World Cup

ALL – Accor Live Limitless, the booking platform and loyalty program of the hospitality chain, has been named as an official supporter of...

Read Article

January 21, 2023 05:06 PM

Fairmont & ALL – Accor Live Limitless lunch ‘Beyond LIMITS’

Stay updated with the latest global travel and hospitality industry insights. Since 1999, TravelDailyNews International brings you comprehensive news,...

Read Article

April 13, 2020 07:00 AM

Loyalty and COVID-19 News for April 13th, 2020

Here's what we're following in loyalty news: Stay up-to-date with the latest brand communications about COVID-19, State Farm and Allstate...

Read Article

January 27, 2020 08:00 AM

Six Accor Live Limitless programme members to unveil Paris Saint-Germain’s new shirt

The new Paris Saint-Germain jersey is set to be revealed by six members of ALL, the Accor Live Limitless program. The fans are from all over...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-8023

SUMMARY

Zephyr's HTTP server (subsys/net/lib/http) provides a static-filesystem resource type (HTTP_RESOURCE_TYPE_STATIC_FS, available when CONFIG_FILE_SYSTEM is enabled) that serves files from a configured root directory. Before this fix, both the HTTP/1 and HTTP/2 front-ends placed the raw, attacker-controlled request path into client-url_buffer (assembled in on_url() for HTTP/1 and copied verbatim from the :path pseudo-header for HTTP/2) without resolving ./.. segments. The static-FS handler then built the on-disk filename by directly concatenating the configured root with that raw URL (snprintk(fname, ..., "%s%s", static_fs_detail-fs_path, client-url_buffer) at http_server_http1.c:603 and http_server_http2.c:490) and opened it with fs_open(fname, FS_O_READ). Because the handler is reached via wildcard/leading-dir (fnmatch FNM_LEADING_DIR) or fallback resource matching, a request such as GET /<prefix/../../<file is dispatched to the handler and, after the underlying filesystem (e.g. LittleFS/FAT) resolves the .. segments, escapes the configured web root, letting an unauthenticated remote client read arbitrary readable files on the mounted volume (information disclosure). The HTTP server requires no TLS or authentication to reach this path. The fix adds http_server_remove_dot_segments(), which canonicalizes the path portion of the URL before resource lookup in both protocol handlers, neutralizing the traversal. Affects releases v4.0.0 through v4.4.0 for deployments that register a static-filesystem resource.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: 7.5)

cvss3

Base Score: 7.5

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Impact Score

3.6

Exploitability

3.9

REFERENCES

CVE-2026-7656

SUMMARY

The IPv6 Neighbor Discovery handlers in subsys/net/ip/ipv6_nbr.c (handle_ra_input, handle_ns_input, handle_na_input) used an incorrect boolean expression that combined the RFC 4861 validity checks with the ICMPv6 code check using the wrong operator precedence: the form was '((length/hop/source/target checks) && (icmp_hdr-code != 0))'. Because every legitimate ND message carries ICMPv6 code 0, an attacker setting code == 0 (the normal value) caused the entire predicate to evaluate false, so the packet was never dropped and all of the other checks were silently skipped. The bypassed checks include the mandatory Hop Limit == 255 verification (which proves an ND packet originated on-link and was not forwarded) and, for Router Advertisements, the requirement that the source be a link-local address, as well as multicast-target sanity checks. As a result, an adjacent on-link attacker — and, because the Hop-Limit-255 guard is bypassed, potentially a remote/off-link attacker whose packets would otherwise be rejected — can have forged Router Advertisement, Neighbor Solicitation, and Neighbor Advertisement messages accepted. A forged RA lets the attacker reconfigure the victim's default router, on-link prefixes (SLAAC), MTU, reachable/retransmit timers, and (with CONFIG_NET_IPV6_RA_RDNSS) DNS servers, while forged NS/NA enable neighbor-cache poisoning, enabling man-in-the-middle, traffic redirection, and denial of service. The flaw is an input-validation/authentication weakness rather than a memory-safety issue: the underlying packet-parsing primitives (net_pkt_get_data, net_pkt_read, net_pkt_skip) are independently bounds-safe and the validated 'length' is the true buffer length, so skipping the length check causes no out-of-bounds access. The defect has existed since the logic was introduced in 2018 and shipped in all releases through v4.4.0; it is fixed by splitting the condition so any failing check drops the packet.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: 8.1)

cvss3

Base Score: 8.1

Complexity: LOW

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

Impact Score

5.2

Exploitability

2.8

REFERENCES

CVE-2026-51219

SUMMARY

A heap buffer overflow in the HighPriorityASDUQueue_hasUnconfirmedIMessages function of lib60870 v2.3.3 to v2.3.6 allows attackers to cause a Denial of Service (DoS) via a crafted payload.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: )

Impact Score

Exploitability

REFERENCES

CVE-2026-51218

SUMMARY

A heap buffer overflow in the TS7Worker::PerformFunctionWrite() function (/core/s7_server.cpp) of snap7 v1.4.3 allows attackers to cause a Denial of Service (DoS) via a crafted packet.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: )

Impact Score

Exploitability

REFERENCES

CVE-2026-10648

SUMMARY

mcumgr_serial_process_frag() in subsys/mgmt/mcumgr/transport/src/serial_util.c calls net_buf_reset() on the result of smp_packet_alloc() before checking it for NULL. smp_packet_alloc() uses net_buf_alloc(K_NO_WAIT) against the shared MCUmgr packet pool (CONFIG_MCUMGR_TRANSPORT_NETBUF_COUNT, default 4), which returns NULL when the pool is exhausted. In default builds the __ASSERT_NO_MSG in net_buf_reset is a no-op, so net_buf_simple_reset writes through the NULL pointer (buf->len = 0; buf->data = buf->__buf), causing a fault/crash. The fragment data reaches this code from attacker-controlled bytes on the MCUmgr serial/UART/shell-console transports (smp_uart.c, smp_raw_uart.c, smp_shell.c), and a fresh buffer is allocated at the start of essentially every new packet. An attacker on the serial/console link can flood the transport to drive the 4-entry buffer pool to exhaustion and induce the NULL dereference, crashing the device (denial of service). The defect was introduced after the original MCUmgr rework and shipped in Zephyr v4.4.0. The fix moves the NULL check ahead of net_buf_reset.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: 6.2)

cvss3

Base Score: 6.2

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Impact Score

3.6

Exploitability

2.5

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…