What is the official website of Bosch Canada ?

The official website of Bosch Canada is http://www.bosch.ca.

What is Bosch Canada's cybersecurity risk score?

Bosch Canada has an AI-generated cybersecurity risk score of 751 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has Bosch Canada experienced?

According to Rankiteo, Bosch Canada currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Bosch Canada been affected by any supply chain cyber incidents ?

According to Rankiteo, Bosch Canada has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Bosch Canada have SOC 2 Type 1 certification ?

According to Rankiteo, Bosch Canada is not certified under SOC 2 Type 1.

Does Bosch Canada have SOC 2 Type 2 certification ?

According to Rankiteo, Bosch Canada does not hold a SOC 2 Type 2 certification.

Does Bosch Canada comply with GDPR ?

According to Rankiteo, Bosch Canada is not listed as GDPR compliant.

Does Bosch Canada have PCI DSS certification ?

According to Rankiteo, Bosch Canada does not currently maintain PCI DSS compliance.

Does Bosch Canada comply with HIPAA ?

According to Rankiteo, Bosch Canada is not compliant with HIPAA regulations.

Does Bosch Canada have ISO 27001 certification ?

According to Rankiteo,Bosch Canada is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Bosch Canada operate in ?

Bosch Canada operates primarily in the Software Development industry.

How many employees does Bosch Canada have ?

Bosch Canada employs approximately 41 people worldwide.

Does Bosch Canada own any subsidiaries ?

Bosch Canada presently has no subsidiaries across any sectors.

How many LinkedIn followers does Bosch Canada have ?

Bosch Canada's official LinkedIn profile has approximately 4,357 followers.

What is the NAICS classification code for Bosch Canada ?

Bosch Canada is classified under the NAICS code 5112, which corresponds to Software Publishers.

Does Bosch Canada have a Crunchbase profile ?

No, Bosch Canada does not have a profile on Crunchbase.

Does Bosch Canada have a LinkedIn profile ?

Yes, Bosch Canada maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/bosch-canada.

How many cybersecurity incidents has Bosch Canada experienced ?

As of June 15, 2026, Rankiteo reports that Bosch Canada has experienced 3 cybersecurity incidents.

How many peer or competitor companies does Bosch Canada have ?

Bosch Canada has an estimated 30,077 peer or competitor companies worldwide.

What types of cybersecurity incidents has Bosch Canada faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Breach and Vulnerability.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

Bosch Canada

Boost Score +25 with badge (5 left)

751

/1000

Fair

776

/1000

Fair

Bosch Canada Vendor Cyber Rating & Cyber Score

bosch.ca

Add Your Compliance Badge

Having established a presence in North America in 1906, today the Bosch Group employs more than 41,000 associates in more than 100 locations in the North American region (as of Dec. 31, 2024). Bosch generated consolidated sales of $17.3 billion in the U.S., Mexico and Canada in 2024. Bosch first established its presence in Canada in 1911 during the early days of our automotive footprint expansion. The first office was opened in Montreal in 1954. The company has since expanded its presence in the region through several legal entities that operate as part of the Bosch Group: Robert Bosch Inc. — including Automotive Aftermarket, Power Tools, Building Technologies and Home Comfort, BSH, ETAS, Freud, Paladin and Rexroth with offices in various

Bosch Canada A.I CyberSecurity Scoring

Scoring History

Bosch Canada

Bosch Canada CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

Bosch Canada

Breach

12/2025

BOS1764973211

Bosch

Breach

12/2025

BOS1780504416

Bosch Canada

Vulnerability

100

1/2024

BOS334333310272...

Loading…

A.I.

Bosch Canada Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for Bosch Canada

Incidents vs Software Development Industry Avg (This Year)

No incidents recorded for Bosch Canada in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Bosch Canada in 2026.

Incident Types Bosch Canada vs Software Development Industry Avg (This Year)

No incidents recorded for Bosch Canada in 2026.

Incident History - Bosch Canada (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Bosch Canada Subsidiaries

Bosch Canada

Software Development

Website: http://www.bosch.ca

Company Size: 1,001-5,000 employees

BoschSoftware Development

Bosch Global Software TechnologiesSoftware Development

Bosch IndiaMotor Vehicle Manufacturing

Bosch BrasilSoftware Development

Bosch Rexroth BrasilAutomation Machinery Manufacturing

Bosch Projects do BrasilIndustrial Machinery Manufacturing

Bosch MobilityAutomotive

Bosch Industry ConsultingBusiness Consulting and Services

Bosch ÖsterreichSoftware Development

Origify Product AuthenticationTechnology, Information and Internet

Bosch Middle EastIT Services and IT Consulting

Bosch RexrothAutomation Machinery Manufacturing

ctrlX OS EcosystemAutomation Machinery Manufacturing

CU.BE @Bosch RexrothIndustrial Machinery Manufacturing

Bosch PortugalSoftware Development

Bosch Industry Consulting PortugalMechanical Or Industrial Engineering

INNOVATIVE CAR HMIFabricação de veículos automotores, reboques e carrocerias

Projeto Safe CitiesSecurity and Investigations

Bosch RomaniaMotor Vehicle Manufacturing

Bosch ChinaIT Services and IT Consulting

Bosch Security and Safety SystemsAppliances, Electrical, and Electronics Manufacturing

Conference solutions by BoschProductie huishoudelijke apparaten en consumentenelektronica

IQSIGHTAppliances, Electrical, and Electronics Manufacturing

Bosch ResearchResearch Services

Bosch MagyarországSoftware Development

Bosch Power ToolsAppliances, Electrical, and Electronics Manufacturing

Bosch Professional Power Tools and AccessoriesAppliances, Electrical, and Electronics Manufacturing

Bosch Australia & New ZealandIndustrial Machinery Manufacturing

Bosch Australia Manufacturing Solutions (BAMS)Industrial Machinery Manufacturing

Bosch Home Comfort GroupRenewable Energy Semiconductor Manufacturing

Bosch Thermotechnik GmbHRenewable Energy Semiconductor Manufacturing

Bosch Sensortec GmbHSemiconductor Manufacturing

Bosch NordicIT Services and IT Consulting

Bosch UK & IrelandSoftware Development

Bosch Automotive Service Solutions UKIT Services and IT Consulting

Bosch SwitzerlandSoftware Development

Bosch Energy and Building SolutionsElectrical Equipment Manufacturing

Bosch USASoftware Development

Bosch TürkiyeIndustrial Machinery Manufacturing

Bosch Turkey Automotive TechnologyMotor Vehicle Manufacturing

Bosch Turkey Industrial TechnologyIT Services and IT Consulting

Bosch Software InnovationsSoftware Development

Bosch Automotive NAMotor Vehicle Manufacturing

Bosch Service SolutionsBusiness Consulting and Services

Bosch Secure Truck ParkingTransportation, Logistics, Supply Chain and Storage

Bosch Manufacturing Solutions | BMGAutomation Machinery Manufacturing

Moehwald GmbHIndustrial Machinery Manufacturing

Bosch Manufacturing Solutions | BMG MexicoAutomation Machinery Manufacturing

Bosch Manufacturing Solutions | BMG Czech RepublicAutomation Machinery Manufacturing

Bosch Manufacturing Solutions | BMG ChinaAutomation Machinery Manufacturing

Bosch Manufacturing Solutions | BMG SpainMachinery Manufacturing

Bosch Manufacturing Solutions | BMG IndiaAutomation Machinery Manufacturing

Bosch Manufacturing Solutions | BMG USAAutomation Machinery Manufacturing

Bosch Manufacturing Solutions | BMG Middle EastAutomation Machinery Manufacturing

Bosch Manufacturing Solutions | BMG ASEANAutomation Machinery Manufacturing

Bosch Business InnovationsVenture Capital and Private Equity Principals

Bosch DigitalIT Services and IT Consulting

Bosch Connected IndustryInformation Technology & Services

Junkers BoschHVAC and Refrigeration Equipment Manufacturing

Bosch ConnectedWorldIT Services and IT Consulting

Bosch Rexroth CanadaIndustrial Automation

Bosch VenturesVenture Capital and Private Equity Principals

Bosch BelgiumTechnology, Information and Internet

Bosch Home Comfort BelgiumHVAC and Refrigeration Equipment Manufacturing

Bosch Mobility Aftermarket BelgiumMotor Vehicle Parts Manufacturing

Bosch Industrial PortugalIndustrial Machinery Manufacturing

Bosch JapanMotor Vehicle Manufacturing

Bosch Hydrogen EnergyErneuerbare Energien und Halbleiterproduktion

CyberCompareIT Services and IT Consulting

CyberCompare Security DaysEvents Services

Bosch Digital BulgariaIT Services and IT Consulting

Bosch Comercial e Industrial EspañaIndustrial Machinery Manufacturing

Bosch PolskaIndustrial Machinery Manufacturing

Bosch Digital Twin IndustriesSoftware Development

Bosch Life Safety SystemsFire Protection

Bosch FranceIndustrial Machinery Manufacturing

Bosch Home Comfort FranceMechanical Or Industrial Engineering

Bosch Mobility Aftermarket FranceAutomotive

Bosch Rodez Manufacturing and ServicesIndustrial Machinery Manufacturing

Bosch the NetherlandsTechnology, Information and Internet

Bosch Car Service NLMotor Vehicle Manufacturing

Bosch Mobility Aftermarket NederlandMotor Vehicle Parts Manufacturing

Loading…

Bosch Canada Similar Companies

[24]7.ai

cb 247.ai

[24]7.ai™ customer engagement solutions use conversational artificial intelligence to understand customer intent, enabling companies to create personalized, predictive, and effortless customer experiences across all channels; attract and retain customers; boost agent productivity and satisfaction; and drive revenues while lowering costs. The world’s largest and most recognizable brands use [24]7.ai intent-driven technologies to serve several hundred million visitors through billions of conversations annually, most of which are automated. The result is an order of magnitude improvement in digital adoption, customer satisfaction, and revenue growth. For more information, visit: www.247.ai. [24]7.ai is based in Campbell, California. [24]7.ai is a registered trademark of 24/7 Customer, Inc.

Shopify

cb shopify.com

Shopify is a leading global commerce company, providing trusted tools to start, grow, market, and manage a retail business of any size. Shopify makes commerce better for everyone with a platform and services that are engineered for reliability, while delivering a better shopping experience for consumers everywhere. Shopify powers millions of businesses in more than 175 countries and is trusted by brands such as Allbirds, Gymshark, PepsiCo, Staples, and many more. Find all our jobs here: www.shopify.com/careers

UKG

ukg.com

UKG is the Workforce Operating Platform that puts workforce understanding to work. With the world's largest collection of workforce insights, and people-first AI, our ability to reveal unseen ways to build trust, amplify productivity, and empower talent, is unmatched. It's this expertise that equips our customers with the intelligence to solve any challenge in any industry — because great organizations know their workforce is their competitive edge.

PhonePe

cb phonepe.com

PhonePe Group is India’s leading fintech company, proudly recognized as India’s #1 Trusted Digital Payments* Brand for three consecutive years. Our flagship product, the PhonePe app was launched in August 2016, has rapidly become the preferred consumer payments app in India. In just eight years, PhonePe has gained over 57 crore + registered users and established a digital payments acceptance network of over 4 crore+ merchants spread across Tier 2,3 cites and beyond, covering 99% of the postal codes in the country. Building on our leadership in digital payments, PhonePe Group has expanded into financial services—including insurance, lending, and wealth management—along with new consumer tech ventures such as Pincode, a hyperlocal ecommerce platform, Indus App Store - India’s first localized app store, and Share.Market- A wealth and investment platform (app & website), catering to investors and traders needs. Headquartered in India, PhonePe Group aligns its diverse portfolio of businesses with our vision We're committed to empowering every Indian by unlocking the flow of money and providing equal access to easy & secure payments and financial services.

IGT

IGT.com

IGT is a leading global provider of gaming, digital and financial technology solutions, formed through the combination of International Game Technology PLC’s Gaming & Digital Business and Everi Holdings Inc. IGT’s offering spans gaming machines, game content and systems, iGaming, sports betting, cash access, loyalty and player engagement solutions, enabling it to deliver integrated, customer-centric experiences across land-based and digital environments. Organized into Gaming, Digital and FinTech business units, IGT drives innovation, efficiency and value for casino, digital and hospitality operators worldwide. The company is headquartered in Las Vegas.

PedidosYa

pedidosya.com

We’re the delivery market leader in Latin America. Our platform connects over 77.000 restaurants, supermarkets, pharmacies and stores with millions of users. Nowadays we operate in more than 500 cities in Latinamerica. And we are now over 3.400 employees. PedidosYa is available for iOS, Android and Windows Phone operating systems and downloads are now over 20 million.

HubSpot

hubspot.com

HubSpot is a leading CRM platform that provides software and support to help businesses grow better. Our platform includes marketing, sales, service, and website management products that start free and scale to meet our customers’ needs at any stage of growth. Today, thousands of customers around the world use our powerful and easy-to-use tools and integrations to attract, engage, and delight customers. HubSpot's award-winning culture has been recognized by Glassdoor, Great Place to Work, Comparably, Fortune, Entrepreneur, Inc., and more. We build connections, careers, and employee growth by creating a workplace that values flexibility, autonomy, and transparency. You can learn more about our commitment to creating an inclusive and diverse workplace in the HubSpot Culture Code. HubSpot is a hybrid company with employees working fully remotely, from an office, or a mix of the two. We are headquartered in Cambridge, MA with offices in Amsterdam, Berlin, Bogota, Dublin, Ghent, London, Madrid, Paris, San Francisco, Singapore, Sydney, Tokyo and Toronto. To learn more about HubSpot, visit www.hubspot.com and to join our team, visit www.hubspot.com/careers

Dassault Systèmes

3ds.com

Dassault Systèmes is a catalyst for human progress. Since 1981, the company has pioneered virtual worlds to improve real life for consumers, patients and citizens. With Dassault Systèmes’ 3DEXPERIENCE platform, 370,000 customers of all sizes, in all industries, can collaborate, imagine and create sustainable innovations that drive meaningful impact. For more information, visit: https://www.3ds.com

Wolters Kluwer

cb wolterskluwer.com

Wolters Kluwer (EURONEXT: WKL) is a global leader in information, software solutions, and services for professionals in healthcare; tax and accounting; financial and corporate compliance; legal and regulatory; corporate performance and ESG. We help our customers make critical decisions every day by providing expert solutions that combine deep domain knowledge with technology. Wolters Kluwer reported 2024 annual revenues of €5.9 billion. The group serves customers in over 180 countries, maintains operations in over 40 countries, and employs approximately 21,000 people worldwide. The company is headquartered in Alphen aan den Rijn, the Netherlands. Equal Opportunity Employer To ensure we continue to drive innovation that enables us to develop products and services to best serve our customers, we cultivate a workplace culture rooted in mutual respect, bringing forward insights from a wide range of backgrounds, perspectives, and experiences. We are also committed to complying with laws requiring equal opportunity in hiring, promotion, and other employment decisions. All qualified applicants will receive consideration without regard to race, color, religion, sex (including pregnancy, gender identity, transgender status, and sexual orientation), national origin, disability, age, genetic information, veteran status, or any other characteristic protected by applicable law, and we do not tolerate discrimination on any of these bases. Beware of Recruitment Fraud! 🔒 Scammers may pose as Wolters Kluwer, offering fake job opportunities and requesting personal info or payments. Protect yourself: - Apply only via our secure Workday hub on our Careers page. - Our recruiters never ask for banking info or payments. - We don't use public email accounts (e.g., Hotmail, Yahoo, Gmail). Report suspected fraud: [email protected]. If you've made a payment, contact local authorities. Read more here - https://careers.wolterskluwer.com/en/recruitment-fraud-alert

Loading…

NEWS

Bosch Canada CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

October 23, 2025 07:00 AM

Automotive Cyber Security Market Report 2025: Revenues Grew by $750 Million Over the Last Year, Led by Continental, Bosch, and Aptiv

The automotive cyber security market is evolving due to increased connectivity and regulatory demands, presenting opportunities in...

Read Article

July 07, 2025 07:00 AM

B.C. woman lost over $500K in bitcoin in 2021 SIM swap fraud scheme, lawsuit alleges

A judge has ordered a B.C. woman who allegedly lost $530000 worth of bitcoin in a fraud attack to resolve her lawsuit out of the courts.

Read Article

April 26, 2025 07:00 AM

NSDC skills polytechnic, ITI students in job roles related to AI, EV, renewable energy, cybersecurity

Companies such as Google, Toyota, Genpact, Bosch, and few traditional enterprises are providing apprenticeships - EducationTimes.com.

Read Article

April 28, 2024 07:00 AM

Update: London Drugs store in Chilliwack remains closed Monday due to ‘cybersecurity incident’

Update at 10:30 a.m.: The Chilliwack London Drugs inside Cottonwood Centre mall remains closed Monday mornin...

Read Article

January 14, 2024 08:00 AM

Another home thermostat found vulnerable to attack

Bitdefender Labs, a smart home cybersecurity firm, recently discovered a significant vulnerability in the Bosch BCC100 thermostat.

Read Article

November 09, 2023 08:00 AM

Red Sofa Interview: Autoliv’s Dr Gisela Linge on the human-centric engine driving digitalisation

Dr Gisela Linge, supply chain vice president at Autoliv says the key to embedding digitalisation is to “first embed this in our way of...

Read Article

January 05, 2022 08:00 AM

Software at the core of purpose: Robert Bosch Engineering and Business Solutions renamed as BGSW

RBEI now Bosch Global Software Technologies (BGSW) to hire 5500+ engineers with focus on niche skills like AI, ML, Cyber Security,...

Read Article

November 05, 2017 07:00 AM

Continental Signs Agreement to Buy Automotive Cybersecurity Company Argus

The companies announced the acquisition Friday. Argus will become part of Continental but continue global commercial relations with...

Read Article

April 13, 2017 07:00 AM

Argus Cyber Security Working With Bosch to Promote Public Safety and Mitigate Car Hacking

PRNewswire/ -- Argus Cyber Security, the world's largest independent automotive cyber security company, and Bosch, the global supplier of...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-12191

SUMMARY

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdrive/modeld/modeld.py of the component Pickle Module. The manipulation results in deserialization. The attack is only possible with local access. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date2026-06-14

Updated

Date2026-06-14

RISK INFORMATION (Score: 7.8)

cvss2

Base Score: 6.8

Complexity: LOW

AV:L/AC:L/Au:S/C:C/I:C/A:C

cvss3

Base Score: 7.8

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 7.1

Complexity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

1.8

REFERENCES

CVE-2026-12190

SUMMARY

A vulnerability has been found in Genspark AI Workspace App 2.8.4 on Android. This vulnerability affects unknown code of the component ai.mainfunc.genspark. The manipulation leads to improper authorization in handler for custom url scheme. The attack can only be performed from a local environment. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date2026-06-14

Updated

Date2026-06-14

RISK INFORMATION (Score: 5.3)

cvss2

Base Score: 4.3

Complexity: LOW

AV:L/AC:L/Au:S/C:P/I:P/A:P

cvss3

Base Score: 5.3

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 4.8

Complexity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

1.8

REFERENCES

CVE-2026-12189

SUMMARY

A flaw has been found in Moovit Bus & Public Transit App 1.18 on Android. This affects an unknown part of the component com.tranzmate. Executing a manipulation can lead to improper authorization in handler for custom url scheme. The attack can only be executed locally. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date2026-06-14

Updated

Date2026-06-14

RISK INFORMATION (Score: 5.3)

cvss2

Base Score: 4.3

Complexity: LOW

AV:L/AC:L/Au:S/C:P/I:P/A:P

cvss3

Base Score: 5.3

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 1.9

Complexity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

1.8

REFERENCES

CVE-2026-12188

SUMMARY

A vulnerability was detected in Grit42 Grit up to 0.11.0. Affected by this issue is some unknown functionality of the file modules/core/backend/app/controllers/concerns/grit/core/grit_entity_controller.rb of the component GritEntityController. Performing a manipulation results in sql injection. The attack may be initiated remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date2026-06-14

Updated

Date2026-06-14

RISK INFORMATION (Score: 6.3)

cvss2

Base Score: 6.5

Complexity: LOW

AV:N/AC:L/Au:S/C:P/I:P/A:P

cvss3

Base Score: 6.3

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 2.1

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

2.8

REFERENCES

CVE-2026-12187

SUMMARY

A security vulnerability has been detected in GL.iNet GL-MT3000 up to 4.4.5. Affected by this vulnerability is an unknown functionality of the file /usr/bin/one_click_upgrade of the component Online Firmware Upgrade Handler. Such manipulation leads to command injection. The attack can be launched remotely. The exploit has been disclosed publicly and may be used. Upgrading to version 4.7 addresses this issue. Upgrading the affected component is advised. The vendor was contacted early, responded in a very professional manner and quickly released a fixed version of the affected product.

Published

Date2026-06-14

Updated

Date2026-06-14

RISK INFORMATION (Score: 8.8)

cvss2

Base Score: 9.0

Complexity: LOW

AV:N/AC:L/Au:S/C:C/I:C/A:C

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 7.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

2.8

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…