What is the official website of Amazon Web Services (AWS) ?

The official website of Amazon Web Services (AWS) is http://aws.amazon.com.

What is Amazon Web Services (AWS)'s cybersecurity risk score?

Amazon Web Services (AWS) has an AI-generated cybersecurity risk score of 598 out of 1000, indicating a Very Poor security posture according to Rankiteo's assessment.

How many security incidents has Amazon Web Services (AWS) experienced?

According to Rankiteo, Amazon Web Services (AWS) currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Amazon Web Services (AWS) been affected by any supply chain cyber incidents ?

According to Rankiteo, Amazon Web Services (AWS) has been affected by multiple supply chain cyber incidents. The affected supply chain sources and their corresponding incident IDs are: npm, Inc. (Incident ID: ELAGITAMAOPENPM1780050263) Socket (Incident ID: AWSSOC1778833973) Braintrust (Incident ID: AMAUSE1778092688) Amazon Web Services (AWS) (Incident ID: LIMAMA1777312775) Vercel (Incident ID: AMAVERGITSTR1775204764) Amazon Web Services (AWS) (Incident ID: AMASTA1775118743) Aqua Security (Incident ID: AQUUSEAMASALCIS1775046662) Amazon Web Services (AWS) (Incident ID: EUR1774635987) Amazon Web Services (AWS) (Incident ID: SALAMAMICPINRED1774269319) NPM (Incident ID: GOOAMANPMGIT1773319158) Amazon Web Services (AWS) (Incident ID: RELLEX1772562253) Amazon Web Services (AWS) (Incident ID: EUR1774628727) Amazon (Incident ID: AMAAPPMIC1770935300) ConnectWise (Incident ID: SMASIMCONAMADAT1775551328) Cisco (Incident ID: CISSAI1773859283) Amazon (Incident ID: LASAMA1769009064) LinkedIn (Incident ID: LINAWS1766995316) Microsoft Security (Incident ID: AMAORAMIC1770695748) Amazon Web Services (AWS) (Incident ID: AMAAWS1770152164) Cisco (Incident ID: SAL5732257091825) Wiz (Incident ID: AMAWIZ1768515615) NPM (Incident ID: GOONPMORGGOVAPPMETTHEAWSTIKK7-1773672350) Fortinet (Incident ID: FORCISAMAJPM1767748297)

Does Amazon Web Services (AWS) have SOC 2 Type 1 certification ?

According to Rankiteo, Amazon Web Services (AWS) is not certified under SOC 2 Type 1.

Does Amazon Web Services (AWS) have SOC 2 Type 2 certification ?

According to Rankiteo, Amazon Web Services (AWS) does not hold a SOC 2 Type 2 certification.

Does Amazon Web Services (AWS) comply with GDPR ?

According to Rankiteo, Amazon Web Services (AWS) is not listed as GDPR compliant.

Does Amazon Web Services (AWS) have PCI DSS certification ?

According to Rankiteo, Amazon Web Services (AWS) does not currently maintain PCI DSS compliance.

Does Amazon Web Services (AWS) comply with HIPAA ?

According to Rankiteo, Amazon Web Services (AWS) is not compliant with HIPAA regulations.

Does Amazon Web Services (AWS) have ISO 27001 certification ?

According to Rankiteo,Amazon Web Services (AWS) is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Amazon Web Services (AWS) operate in ?

Amazon Web Services (AWS) operates primarily in the IT Services and IT Consulting industry.

How many employees does Amazon Web Services (AWS) have ?

Amazon Web Services (AWS) employs approximately 153,837 people worldwide.

Does Amazon Web Services (AWS) own any subsidiaries ?

Amazon Web Services (AWS) presently has no subsidiaries across any sectors.

How many LinkedIn followers does Amazon Web Services (AWS) have ?

Amazon Web Services (AWS)'s official LinkedIn profile has approximately 10,600,547 followers.

What is the NAICS classification code for Amazon Web Services (AWS) ?

Amazon Web Services (AWS) is classified under the NAICS code 5415, which corresponds to Computer Systems Design and Related Services.

Does Amazon Web Services (AWS) have a Crunchbase profile ?

No, Amazon Web Services (AWS) does not have a profile on Crunchbase.

Does Amazon Web Services (AWS) have a LinkedIn profile ?

Yes, Amazon Web Services (AWS) maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/amazon-web-services.

How many cybersecurity incidents has Amazon Web Services (AWS) experienced ?

As of June 12, 2026, Rankiteo reports that Amazon Web Services (AWS) has experienced 62 cybersecurity incidents.

How many peer or competitor companies does Amazon Web Services (AWS) have ?

Amazon Web Services (AWS) has an estimated 40,678 peer or competitor companies worldwide.

What types of cybersecurity incidents has Amazon Web Services (AWS) faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Vulnerability, Ransomware, Cyber Attack, Breach and Data Leak.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

AWS

Boost Score +25 with badge (5 left)

598

/1000

Very Poor

623

/1000

Poor

Amazon Web Services (AWS) Vendor Cyber Rating & Cyber Score

amazon.com

Add Your Compliance Badge

Launched in 2006, Amazon Web Services (AWS) began exposing key infrastructure services to businesses in the form of web services -- now widely known as cloud computing. The ultimate benefit of cloud computing, and AWS, is the ability to leverage a new business model and turn capital infrastructure expenses into variable costs. Businesses no longer need to plan and procure servers and other IT resources weeks or months in advance. Using AWS, businesses can take advantage of Amazon's expertise and economies of scale to access resources when their business needs them, delivering results faster and at a lower cost. Today, Amazon Web Services provides a highly reliable, scalable, low-cost infrastructure platform in the cloud that powers

AWS A.I CyberSecurity Scoring

Scoring History

AWS

Amazon Web Services (AWS) CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

Amazon Web Services...

Cyber Attack

100

6/2026

GOOAMA178116664...

Amazon Web Services...

Cyber Attack

5/2026

npm, Inc.

ELAGITAMAOPENPM...

Amazon Science

Vulnerability

5/2026

OPEANTAMAXAI177...

AWS for Healthcare ...

Cyber Attack

5/2026

Socket

AWSSOC177883397...

Amazon Science

Breach

5/2026

Braintrust

AMAUSE177809268...

Amazon Web Services...

Cyber Attack

4/2026

Amazon Web Serv...

LIMAMA177731277...

Amazon

Cyber Attack

4/2026

ELFTEMCOUGRUAMA...

Amazon Web Services...

Cyber Attack

4/2026

Vercel

AMAVERGITSTR177...

Amazon Web Services...

Vulnerability

100

4/2026

Amazon Web Serv...

AMASTA177511874...

AWS Partners

Vulnerability

4/2026

AWSGITSTR177516...

Amazon Web Services...

Vulnerability

100

4/2026

Aqua Security

AQUUSEAMASALCIS...

Amazon Web Services...

Cyber Attack

3/2026

Amazon Web Serv...

EUR1774635987

Amazon Web Services...

Vulnerability

100

3/2026

Amazon Web Serv...

SALAMAMICPINRED...

Amazon Web Services...

Vulnerability

3/2026

AMA1773707045

Amazon Web Services...

Cyber Attack

3/2026

NPM

GOOAMANPMGIT177...

Amazon Web Services...

Vulnerability

3/2026

AMA1772792723

Amazon Web Services...

Cyber Attack

100

3/2026

AMA1772678135

Amazon Quick

Vulnerability

3/2026

AMA1778761660

Amazon Web Services...

Breach

100

3/2026

Amazon Web Serv...

RELLEX177256225...

Amazon

Cyber Attack

3/2026

AMA1775744757

Amazon Web Services...

Breach

3/2026

Amazon Web Serv...

EUR1774628727

Amazon

Vulnerability

100

2/2026

Amazon

AMAAPPMIC177093...

Amazon

Cyber Attack

2/2026

ConnectWise

SMASIMCONAMADAT...

Amazon

Breach

2/2026

AMA1770339008

Amazon

Cyber Attack

2/2026

AMAINSCOIGOOFLI...

Amazon

Cyber Attack

2/2026

AMA1773987972

AWS Partners

Breach

1/2026

AWSDIGOVH176978...

Amazon

Vulnerability

100

1/2026

Cisco

CISSAI177385928...

Amazon

Cyber Attack

1/2026

Amazon

LASAMA176900906...

AWS Databases & Ana...

Cyber Attack

1/2026

HUNAWS177273537...

Amazon Web Services...

Vulnerability

100

1/2026

GOOAMAOPEANT177...

AWS Partners

Cyber Attack

12/2025

LINAWS176699531...

Amazon Web Services...

Cyber Attack

100

12/2025

Microsoft Secur...

AMAORAMIC177069...

Amazon

Vulnerability

12/2025

AMAUNIGOOWAK176...

Amazon Web Services...

Cyber Attack

100

12/2025

KUBNVITENALIAMA...

Amazon Web Services...

Breach

100

11/2025

Amazon Web Serv...

AMAAWS177015216...

Amazon Web Services...

Cyber Attack

11/2025

AMA1765965358

Amazon Web Services...

Cyber Attack

100

10/2025

AMA023220210212...

Amazon Web Services...

Cyber Attack

9/2025

AMA409264009232...

AWS Partners

Cyber Attack

100

9/2025

Cisco

SAL573225709182...

Amazon Web Services...

Vulnerability

100

9/2025

Wiz

AMAWIZ176851561...

For Industries

Vulnerability

8/2025

NPM

GOONPMORGGOVAPP...

Amazon Web Services...

Cyber Attack

7/2025

RIN709072225

Amazon Web Services...

Vulnerability

6/2025

AMA505082225

Amazon Web Services...

Ransomware

100

5/2025

AMA503215011212...

Amazon Web Services...

Vulnerability

100

12/2024

Fortinet

FORCISAMAJPM176...

Amazon Web Services...

Vulnerability

8/2024

AMA000082124

Amazon Web Services...

Breach

7/2024

AMA000072524

Amazon Web Services...

Cyber Attack

100

6/2024

AMA190211910222...

Amazon Web Services...

Breach

09/2023

WHO04111223

Amazon Web Services...

Vulnerability

6/2023

AMA016210111072...

Amazon Web Services...

Data Leak

10/2021

TWI19174123

Amazon Web Services...

Cyber Attack

100

6/2021

AMA1768595116

Amazon Web Services...

Breach

100

01/2021

RIN01518622

Amazon Web Services...

Cyber Attack

100

6/2020

AMA1780793273

Amazon Web Services...

Data Leak

01/2020

AMA21461222

Amazon Web Services...

Data Leak

01/2020

RIN211261222

Amazon Web Services...

Data Leak

12/2019

RIN2178523

Amazon

Breach

6/2018

TIKAMA176901658...

Amazon Web Services...

Data Leak

02/2018

AMA350181223

Amazon Web Services...

Breach

3/2017

WHO631090125

Amazon Web Services...

Cyber Attack

01/2016

AMA0417522

Loading…

A.I.

AWS Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for AWS

Incidents vs IT Services and IT Consulting Industry Avg (This Year)

Amazon Web Services (AWS) has 886.84% more incidents than the average of same-industry companies with at least one recorded incident.

Incidents vs All-Companies Average (This Year)

Amazon Web Services (AWS) has 1288.89% more incidents than the average of all companies with at least one recorded incident.

Incident Types AWS vs IT Services and IT Consulting Industry Avg (This Year)

Amazon Web Services (AWS) reported 15 incidents this year: 7 cyber attacks, 0 ransomware, 6 vulnerabilities, 2 data breaches, compared to industry peers with at least 1 incident.

Incident History - AWS (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Amazon Web Services (AWS) Subsidiaries

AWS

IT Services and IT Consulting

Website: http://aws.amazon.com

Company Size: 10,000+ employees

AWS for Retail and Consumer GoodsIT Services and IT Consulting

AWS PartnersIT Services and IT Consulting

AmazonSoftware Development

Whole Foods MarketRetail

Amazon ScienceResearch Services

Amazon NewsRetail

Amazon AdsAdvertising Services

TwitchSoftware Development

Twitch AdsInternet Publishing

Amazon Lab126Computers and Electronics Manufacturing

Sell on AmazonTechnology, Information and Internet

Souq.comTechnology, Information and Internet

GoodreadsTechnology, Information and Internet

Transportation, Shipping, & Logistics at AmazonTransportation, Logistics, Supply Chain and Storage

AudibleSoftware Development

Audible GmbHOnline Audio and Video Media

Amazon CareersSoftware Development

Amazon MusicEntertainment Providers

RingComputers and Electronics Manufacturing

Amazon KeyTechnology, Information and Internet

Amazon AssociatesTechnology, Information and Internet

IMDb.comEntertainment Providers

Zappos Family of CompaniesRetail

AbeBooks, an Amazon companyTechnology, Information and Internet

Amazon PayTechnology, Information and Internet

Amazon GamesEntertainment Providers

Amazon Development Center PolandSoftware Development

Amazon Alexa DevelopersComputers and Electronics Manufacturing

Amazon ClinicHospitals and Health Care

ShopbopRetail

Fulfillment by AmazonWarehousing and Storage

Amazon KindleRetail

Amazon Fulfillment Technologies & RoboticsSoftware Development

Amazon Ads PartnersAdvertising Services

A9.comTechnology, Information and Internet

Amazon Fashion & SportsRetail Apparel and Fashion

Amazon LaunchpadInternet Publishing

CurseComputer Games

Amazon DeveloperConsumer Electronics

Amazon | LiquavistaAppliances, Electrical, and Electronics Manufacturing

Amazon PharmacyRetail Pharmacies

Amazon BusinessRetail

Alexa.comTechnology, Information and Internet

Brilliance PublishingBook and Periodical Publishing

Quidsi Inc., a subsidiary of AmazonRetail

BeautyBar.comRetail

Wag.comManufacturing

Soap.comRetail

YoYo.comConsumer Goods

Casa.comRetail

Amazon HelpRetail

PerceiveSemiconductors

CreateSpaceBook and Periodical Publishing

Amazon AutosRetail Motor Vehicles

Woot, Inc.Retail

Comixology, an Amazon companyEntertainment

LOVEFiLMEntertainment Providers

AWS ThinkboxSoftware Development

Annapurna LabsComputer Networking

Buy with PrimeInternet Publishing

Just Walk Out technologyRetail

AWS AIIT Services and IT Consulting

T VIT Services and IT Consulting

Artificial Intelligence Machine LearningIT Services and IT Consulting

Loading…

Amazon Web Services (AWS) Similar Companies

Inetum

inetum.com

Inetum is a European leader in digital services. Inetum’s team of 27,000 consultants and specialists strive every day to make a digital impact for businesses, public sector entities and society. Inetum’s solutions aim at contributing to its clients’ performance and innovation as well as the common good. Present in 19 countries with a dense network of sites, Inetum partners with major software publishers to meet the challenges of digital transformation with proximity and flexibility. Driven by its ambition for growth and scale, Inetum generated sales of 2.4 billion euros in 2024. 🏅 Top Employer Europe 2025

Lenovo

cb lenovo.com

Lenovo is a US$69 billion revenue global technology powerhouse, ranked #196 in the Fortune Global 500, and serving millions of customers every day in 180 markets. Focused on a bold vision to deliver Smarter Technology for All, Lenovo has built on its success as the world’s largest PC company with a full-stack portfolio of AI-enabled, AI-ready, and AI-optimized devices (PCs, workstations, smartphones, tablets), infrastructure (server, storage, edge, high performance computing and software defined infrastructure), software, solutions, and services. Lenovo’s continued investment in world-changing innovation is building a more equitable, trustworthy, and smarter future for everyone, everywhere. Lenovo is listed on the Hong Kong stock exchange under Lenovo Group Limited (HKSE: 992) (ADR: LNVGY). To find out more visit https://www.lenovo.com, and read about the latest news via our StoryHub at https://news.lenovo.com/. To learn more about our career opportunities, visit our careers page at http://jobs.lenovo.com/.

Coforge

cb coforge.com

Coforge is a global digital services and solutions provider that fuses deep domain expertise with emerging technologies to deliver real-world business impact. With a sharp focus on select industries and an execution intensity that’s uniquely our own, Coforge has emerged as the 7th largest Indian IT services firm, with a revenue growth rate nearly 8x the industry average. We help enterprises transform into intelligent, high-growth businesses through a wide gamut of digital transformation capabilities and deep experience across industries, including Agentic AI, Cloud, Data & Analytics, Low-Code Platforms, Intelligent Automation, Cybersecurity, and the setup and scaling of Global Capability Centers (GCCs). We deliver a wide range of digital engineering services—enabling modernization, operational agility, customer experience transformation, and industry-specific platform solutions. We operate across 24 countries, with 30 global delivery centers and a thriving workforce of 33,497 employees. “We are somewhat atypical in our approach to solving business problems. We are specialists, not just engineers and technologists, who spend an inordinate amount of time understanding the targeted functional spaces that we focus on.” — Sudhir Singh, CEO Coforge is a certified Great Place to Work® (5 years in a row), recognized for excellence in Employee Engagement, Learning & Development, and Corporate Social Responsibility. Our Greater Noida HQ runs entirely on 100% green energy. Through initiatives like The Coforge Public Library, we provide free, inclusive access to knowledge in Noida and Gurugram—and intend to expand this network across India. Coforge has been recognized by leading analysts and advisory firms, including Gartner, Forrester, Everest Group, Zinnov, and more.

Ingram Micro

ingrammicro.com

Ingram Micro is a leading technology company for the global information technology ecosystem. With the ability to reach nearly 90% of the global population, we play a vital role in the worldwide IT sales channel, bringing products and services from technology manufacturers and cloud providers to a highly diversified base of business-to-business technology experts. Through Ingram Micro Xvantage™, our AI-powered digital platform, we offer what we believe to be the industry’s first comprehensive business-to-consumer-like experience, integrating hardware and cloud subscriptions, personalized recommendations, instant pricing, order tracking, and billing automation. We also provide a broad range of technology services, including financing, specialized marketing, and lifecycle management, as well as technical pre- and post-sales professional support. Learn more at www.ingrammicro.com.

NTT DATA Business Solutions

nttdata-solutions.com

We understand the business of our clients and know what it takes to transform it into the future. At NTT DATA Business Solutions, we drive innovation – from advisory and implementation to managed services and beyond. With SAP at our core and a powerful ecosystem of partners, we continuously improve solutions and technology to make them work for companies – and for their people. Aiming to transform, grow and become more successful? We provide you with more than in-depth expertise for SAP solutions: As your passionate partner, we connect your business opportunities with the latest technologies – and offer you a unique approach to get the job done as smoothly as possible. Our close ties to our partners give you access to innovative solutions and developments. Being part of the global NTT DATA group enables us to master any scope of project. With operations in more than 30 countries, we have enabled thousands of companies become more efficient and effective during the last three decades. Our more than 16,000 experts around the world will also accompany you on your journey toward a truly intelligent enterprise – wherever you want to start!

Diebold Nixdorf

cb DieboldNixdorf.com

Diebold Nixdorf automates, digitizes and transforms the way people bank and shop. Its integrated solutions connect digital and physical channels conveniently, securely and efficiently for millions of consumers every day. As an innovation partner for nearly all of the world's top 100 financial institutions and a majority of the top 25 global retailers, Diebold Nixdorf delivers unparalleled services and technology that power the daily operations and consumer experience of financial institutions and retailers around the world.

Accenture in India

accenture.com

Accenture is a global professional services company with leading capabilities in digital, cloud and security. Combining unmatched experience and specialized skills across more than 40 industries, we offer Strategy and Consulting, Interactive, Technology and Operations services — all powered by the world’s largest network of Advanced Technology and Intelligent Operations centers. Our 699,000 people deliver on the promise of technology and human ingenuity every day, serving clients in more than 120 countries. We embrace the power of change to create value and shared success for our clients, people, shareholders, partners and communities. Visit us at accenture.com.

DXC Technology

dxc.com

DXC Technology helps global companies run their mission-critical systems and operations while modernizing IT, optimizing data architectures, and ensuring security and scalability across public, private and hybrid clouds. The world's largest companies and public sector organizations trust DXC to deploy services to drive new levels of performance, competitiveness, and customer experience across their IT estates. Instagram: https://www.instagram.com/dxctechnology Youtube: https://www.youtube.com/DXCTechnology TikTok: https://www.tiktok.com/@dxc_technology

inDrive

cb inDrive.com

inDrive is a global mobility and urban services platform. The inDrive app has been downloaded over 400 million times, and has been the second most downloaded mobility app for the third consecutive year. In addition to ride-hailing, inDrive provides an expanding list of urban services, including intercity transportation and delivery. In 2023, inDrive launched New Ventures, a venture and M&A arm. inDrive operates in 1065 cities in 48 countries. Driven by its mission of challenging social injustice, the company is committed to having a positive impact on the lives of one billion people by 2030. It pursues this goal both through its core business, which supports local communities via a fair pricing model; and through the work of inVision, its non-profit arm. inVision’s community empowerment programs help to advance education, sports, arts and sciences, gender equality and other vital initiatives. For more information visit www.inDrive.com

Loading…

NEWS

Amazon Web Services (AWS) CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

March 28, 2026 07:01 AM

European Commission Confirms Cyberattack After AWS Account Breach

The European Commission has confirmed a cyberattack on its cloud-based infrastructure following the identification of a compromised Amazon...

Read Article

March 28, 2026 03:20 AM

European Commission Confirms Cyberattack Following AWS Account Hack

The European Commission has officially confirmed a data breach following a targeted cyberattack that compromised its Amazon Web Services...

Read Article

March 26, 2026 12:34 PM

CrowdStrike and AWS Announce Jazz as the Winner of the 2026 Cybersecurity Startup Accelerator, Supported by NVIDIA Inception

CrowdStrike announced Jazz as the winner of the third annual Cybersecurity Startup Accelerator with Amazon Web Services (AWS) and NVIDIA...

Read Article

March 25, 2026 07:58 AM

Amazon says AWS Bahrain region 'disrupted' following drone activity

Amazon said its ⁠Amazon Web Services region in Bahrain was "disrupted" on 23 March amid the current conflict in the Middle East, Reuters reported.

Read Article

March 05, 2026 08:00 AM

AWS Middle East (UAE) Region Hit by Drone Strikes, 109 Services Disrupted

A series of drone strikes on Amazon Web Services data center facilities in the United Arab Emirates and Bahrain triggered one of the most...

Read Article

March 02, 2026 08:00 AM

AWS Power Outage in Middle East Triggers Major Disruption to EC2 and Networking Services

A major power outage in the AWS me-central-1 (Middle East) region on March 1, 2026, resulted from an unusual physical incident where...

Read Article

February 27, 2026 08:00 AM

Endpoint Security and Network Monitoring News for the Week of February 27th: Amazon Web Services (AWS), Myriad360, NVIDIA, and More

The editors have curated a list of noteworthy news about endpoint security and network monitoring from the week of February 27th.

Read Article

February 09, 2026 08:00 AM

What ASEAN Governments Can Learn from the Russian State-Backed Attacks on Amazon Web Services

Russian state-backed cyberattacks on cloud-linked critical infrastructure in the West highlight the need for ASEAN governments to develop...

Read Article

February 06, 2026 08:00 AM

AWS Cloud Access Logins now vulnerable to AI powered attacks without Phishing

Over the past few months, much of the discussion around artificial intelligence has centered on its disruptive impact on the job market,...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-47238

SUMMARY

ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 - #133, a normal authenticated user can edit another user's video subtitles because of a lack of authorization. They can upload subtitles, edit their name or delete them. This issue has been patched in version 5.5.3 - #133.

Published

Date2026-06-11

Updated

Date2026-06-11

RISK INFORMATION (Score: 6.5)

cvss3

Base Score: 6.5

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

Impact Score

2.5

Exploitability

3.9

REFERENCES

https://github.com/MacWarrior/clipbucket-v5/security/advisories/GHSA-x468-whmw-c863

CVE-2026-45418

SUMMARY

ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 - #132, any authenticated user who can upload videos can add multiple subtitles from different files and change their title (English, Spanish...). The POST /actions/subtitle_edit.php request used to change their title includes a number parameter which is vulnerable to SQL Injection. A boolean-based blind SQL injection can be used to exfiltrate sensitive data. This issue has been patched in version 5.5.3 - #132.

Published

Date2026-06-11

Updated

Date2026-06-11

RISK INFORMATION (Score: 8.8)

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

2.8

REFERENCES

https://github.com/MacWarrior/clipbucket-v5/security/advisories/GHSA-q233-m544-6jqr

CVE-2026-45060

SUMMARY

ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 - #129, the actions/progress_video.php endpoint is vulnerable to blind SQL injection. Any unauthenticated user can exploit the ids parameter to execute SQL queries and exfiltrate sensitive data. This issue has been patched in version 5.5.3 - #129.

Published

Date2026-06-11

Updated

Date2026-06-11

RISK INFORMATION (Score: 9.8)

cvss3

Base Score: 9.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

3.9

REFERENCES

https://github.com/MacWarrior/clipbucket-v5/security/advisories/GHSA-wpq3-gxx7-c76h

CVE-2026-42846

SUMMARY

ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 - #140, ClipBucket's Remote Play feature allows any authenticated user to add a video by importing an external URL as the source. Some shell commands are run with the URL as a parameter. The URL is concatenated directly into shell commands without escaping then executed, so any shell metacharacter in the URL is interpreted. This results in arbitrary command execution. This issue has been patched in version 5.5.3 - #140.

Published

Date2026-06-11

Updated

Date2026-06-11

RISK INFORMATION (Score: 9.8)

cvss3

Base Score: 9.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

3.9

REFERENCES

https://github.com/MacWarrior/clipbucket-v5/security/advisories/GHSA-hvfx-hxmr-28c7

CVE-2026-6250

SUMMARY

An authenticated format string vulnerability exists in the ONVIF service of Tapo C110 v2 due to improper handling of user-controlled input. Externally controlled data is interpreted as a format string, which can be used to manipulate stack memory, including control flow data such as return addresses. A remote authenticated attacker may redirect execution flow to existing internal functions, triggering an unauthorized factory reset, leading to loss of configuration, deletion of stored credentials and service disruption.

Published

Date2026-06-11

Updated

Date2026-06-11

RISK INFORMATION (Score: )

cvss4

Base Score: 7.0

Complexity: LOW

CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…