Comparison Overview
Arrow ECS North America

Arrow ECS North America
Centennial, 80112, US
Last Update: 01/03/2026
Arrow’s enterprise computing solutions business is a global leader in IT distribution. We provide deep technical expertise and innovative solutions to technology service providers and vendors in the IT channel. Our digital distribution platform, ArrowSphere, enables cha...

Orange Business
La Plaine Saint Denis, Paris, FR, 93457 Cedex
Last Update: 04/04/2026
At Orange Business, our ambition is to become the leading european Network and Digital Integrator by leveraging our proven expertise in next-generation connectivity solutions, the cloud and cybersecurity. Our 30,000 women and men are present in 65 countries, where ever...
Compliance Ranges Comparison

Arrow ECS North America







Orange Business






Benchmark & Cyber Underwriting Signals
Incidents vs IT Services and IT Consulting Industry Avg (This Year)
No incidents recorded for Arrow ECS North America in 2026.
Incidents vs IT Services and IT Consulting Industry Avg (This Year)
No incidents recorded for Orange Business in 2026.
Incident History - Arrow ECS North America (X = Date, Y = Severity)
Arrow ECS North America cyber incidents detection timeline including parent company and subsidiaries.
Incident History - Orange Business (X = Date, Y = Severity)
Orange Business cyber incidents detection timeline including parent company and subsidiaries.
Notable Incidents

Arrow ECS North America

Orange Business
FAQ
Latest Global CVEs
Improper access control in Microsoft Edge for Android allows an unauthorized attacker to bypass a security feature over a network.
A security vulnerability has been detected in NousResearch hermes-agent up to 2026.4.30. Affected is the function GatewayStreamConsumer._filter_and_accumulate of the file gateway/stream_consumer.py of the component Streaming Reasoning Tag Filter. The manipulation leads to improper handling of case sensitivity. The attack may be initiated remotely. The attack's complexity is rated as high. The exploitability is told to be difficult. The exploit has been disclosed publicly and may be used. The project decided to not implement a dedicated fix: "[T]he analysis and the fix are both sound. It just lands below the bar for the maintenance cost of a duplicated scrub path."
- https://gist.github.com/YLChen-007/2229e5505bcbb3e15a7ae8fba4c4be37
- https://github.com/NousResearch/hermes-agent/
- https://github.com/NousResearch/hermes-agent/issues/27288
- https://github.com/NousResearch/hermes-agent/pull/28631#issuecomment-4622188016
- https://vuldb.com/cve/CVE-2026-14617
- https://vuldb.com/submit/844654
- https://vuldb.com/vuln/376134
- https://vuldb.com/vuln/376134/cti
Insufficient ui warning of dangerous operations in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.
Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.
Relative path traversal in Microsoft Edge for Android allows an unauthorized attacker to disclose information locally.