Comparison Overview

Q: Between BROSA company and Douron company, which one has the best AI Cybersecurity Score ?

Douron company demonstrates a stronger AI Cybersecurity Score compared to BROSA company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Q: Between BROSA company and Douron company, which one has experienced more cyber incidents in the past ?

Historically, Douron company has disclosed a higher number of cyber incidents compared to BROSA company.

Q: Between BROSA company and Douron company, which one has experienced more cyber incidents this year ?

In the current year, Douron company and BROSA company have not reported any cyber incidents.

Q: Between BROSA company and Douron company, which one has experienced at least one ransomware attack ?

Neither Douron company nor BROSA company has reported experiencing a ransomware attack publicly.

Q: Between BROSA company and Douron company, which one has experienced at least one data breach ?

Neither Douron company nor BROSA company has reported experiencing a data breach publicly.

Q: Between BROSA company and Douron company, which one has experienced at least one targeted cyberattack ?

Neither Douron company nor BROSA company has reported experiencing targeted cyberattacks publicly.

Q: Between BROSA company and Douron company, which one has experienced at least one vulnerability ?

Neither BROSA company nor Douron company has reported experiencing or disclosing vulnerabilities publicly.

Q: Between BROSA company and Douron company, which one holds the most compliance certifications ?

Neither BROSA nor Douron holds any compliance certifications.

Q: Between BROSA company and Douron company, which one has the most subsidiaries ?

Douron company has more subsidiaries worldwide compared to BROSA company.

BROSA

undefined, South Melbourne, Victoria, 3205, AU

Last Update: 2025-11-26

View Profile

Between 750 and 799

https://www.brosa.com.au

Brosa was born out of discontent with the status quo, and a desire to change the furniture industry for the better. Adhering by the values of quality, choice, value, and accessibility, Brosa seek to change the furniture and homewares industry and consumer landscape, by offering exceptional customer experiences underpinned by digital-first thinking. First and foremost, Brosa care about creating an amazing experience for the consumer – ultimately offering a better way to buy furniture. Brosa has built their whole business around delivering a seamless browsing and buying experience, and helps support decisions by providing advice and support throughout the whole customer journey. By owning their own supply chain, Brosa are able to deliver great furniture, at a great price point. Brosa means ‘smile’ in Icelandic: Brosa’s very first products were raw and natural, inspired by the design philosophies of that region. Brosa has since expanded their range, but the emphasis on delivering new designs and inspiration, accessible pricing, and unmatched customer experiences both online and offline remains front and centre. Brosa is changing the face of how Australians furnish their homes.

NAICS: 337

NAICS Definition: Furniture and Related Product Manufacturing

Employees: 26

Subsidiaries: 0

12-month incidents

0

Known data breaches

0

Attack type number

0

View Profile

Douron

10 Painters Mill Rd, Owings Mills, MD, 21117, US

Last Update: 2025-11-26

Between 750 and 799

http://www.douron.com

We are a leading Mid-Atlantic furniture dealership that works diligently to guide our clients through the vast world of workplace furnishings. We pride ourselves on being genuine and dependable partners in business. Since Douron’s beginning in 1969, our primary goal is to provide clients with the highest quality experience. We work with the best manufacturers and guarantee the products and services we provide. Our mission is to cultivate strong partnerships with our clients while we continue to refine and improve our successful business model.

NAICS: 337

NAICS Definition: Furniture and Related Product Manufacturing

Employees: 77

Subsidiaries: 1

12-month incidents

0

Known data breaches

0

Attack type number

0

BROSA

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Douron

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Furniture and Home Furnishings Manufacturing Industry Average (This Year)

No incidents recorded for BROSA in 2025.

Incidents vs Furniture and Home Furnishings Manufacturing Industry Average (This Year)

No incidents recorded for Douron in 2025.

Incident History — BROSA (X = Date, Y = Severity)

BROSA cyber incidents detection timeline including parent company and subsidiaries

Incident History — Douron (X = Date, Y = Severity)

Douron cyber incidents detection timeline including parent company and subsidiaries

BROSA

Incidents

No Incident

Douron

Incidents

No Incident

Douron company demonstrates a stronger AI Cybersecurity Score compared to BROSA company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, Douron company has disclosed a higher number of cyber incidents compared to BROSA company.

In the current year, Douron company and BROSA company have not reported any cyber incidents.

Neither Douron company nor BROSA company has reported experiencing a ransomware attack publicly.

Neither Douron company nor BROSA company has reported experiencing a data breach publicly.

Neither Douron company nor BROSA company has reported experiencing targeted cyberattacks publicly.

Neither BROSA company nor Douron company has reported experiencing or disclosing vulnerabilities publicly.

Neither BROSA nor Douron holds any compliance certifications.

Neither company holds any compliance certifications.

Douron company has more subsidiaries worldwide compared to BROSA company.

Douron company employs more people globally than BROSA company, reflecting its scale as a Furniture and Home Furnishings Manufacturing.

Neither BROSA nor Douron holds SOC 2 Type 1 certification.

Neither BROSA nor Douron holds SOC 2 Type 2 certification.

Neither BROSA nor Douron holds ISO 27001 certification.

Neither BROSA nor Douron holds PCI DSS certification.

Neither BROSA nor Douron holds HIPAA certification.

Neither BROSA nor Douron holds GDPR certification.

Description

ThingsBoard in versions prior to v4.2.1 allows an authenticated user to upload malicious SVG images via the "Image Gallery", leading to a Stored Cross-Site Scripting (XSS) vulnerability. The exploit can be triggered when any user accesses the public API endpoint of the malicious SVG images, or if the malicious images are embedded in an `iframe` element, during a widget creation, deployed to any page of the platform (e.g., dashboards), and accessed during normal operations. The vulnerability resides in the `ImageController`, which fails to restrict the execution of JavaScript code when an image is loaded by the user's browser. This vulnerability can lead to the execution of malicious code in the context of other users' sessions, potentially compromising their accounts and allowing unauthorized actions.

Published

Date

2025-11-27

Updated

Date

2025-11-27

Risk Information

cvss4

Base: 6.2

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:H/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to to verify that the token used during the code exchange originates from the same authentication flow, which allows an authenticated user to perform account takeover via a specially crafted email address used when switching authentication methods and sending a request to the /users/login/sso/code-exchange endpoint. The vulnerability requires ExperimentalEnableAuthenticationTransfer to be enabled (default: enabled) and RequireEmailVerification to be disabled (default: disabled).

Published

Date

2025-11-27

Updated

Date

2025-11-27

Risk Information

cvss3

Base: 9.9

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

References

https://mattermost.com/security-updates

Description

Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to sanitize team email addresses to be visible only to Team Admins, which allows any authenticated user to view team email addresses via the GET /api/v4/channels/{channel_id}/common_teams endpoint

Published

Date

2025-11-27

Updated

Date

2025-11-27

Risk Information

cvss3

Base: 4.3

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

References

https://mattermost.com/security-updates

Description

Exposure of email service credentials to users without administrative rights in Devolutions Server.This issue affects Devolutions Server: before 2025.2.21, before 2025.3.9.

Published

Date

2025-11-27

Updated

Date

2025-11-27

References

https://devolutions.net/security/advisories/DEVO-2025-0018/

Description

Exposure of credentials in unintended requests in Devolutions Server.This issue affects Server: through 2025.2.20, through 2025.3.8.

Published

Date

2025-11-27

Updated

Date

2025-11-27

References

https://devolutions.net/security/advisories/DEVO-2025-0018/

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

BROSA

VS

Douron

BROSA

Douron

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Furniture and Home Furnishings Manufacturing Industry Average (This Year)

Incidents vs Furniture and Home Furnishings Manufacturing Industry Average (This Year)

Incident History — BROSA (X = Date, Y = Severity)

Incident History — Douron (X = Date, Y = Severity)

Notable Incidents

No Incident

No Incident

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2025-3261

Risk Information

CVE-2025-12421

Risk Information

CVE-2025-12559

Risk Information

CVE-2025-13765

CVE-2025-13758

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

BROSA

VS

Douron

BROSA

Douron

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Furniture and Home Furnishings Manufacturing Industry Average (This Year)

Incidents vs Furniture and Home Furnishings Manufacturing Industry Average (This Year)

Incident History — BROSA (X = Date, Y = Severity)

Incident History — Douron (X = Date, Y = Severity)

Notable Incidents

No Incident

No Incident

FAQ

Between BROSA company and Douron company, which one has the best AI Cybersecurity Score ?

Between BROSA company and Douron company, which one has experienced more cyber incidents in the past ?

Between BROSA company and Douron company, which one has experienced more cyber incidents this year ?

Between BROSA company and Douron company, which one has experienced at least one ransomware attack ?

Between BROSA company and Douron company, which one has experienced at least one data breach ?

Between BROSA company and Douron company, which one has experienced at least one targeted cyberattack ?

Between BROSA company and Douron company, which one has experienced at least one vulnerability ?

Between BROSA company and Douron company, which one holds the most compliance certifications ?

Between BROSA company and Douron company, which one holds the fewest compliance certifications ?

Between BROSA company and Douron company, which one has the most subsidiaries ?

Between BROSA company and Douron company, which one has the largest number of employees ?

Between BROSA and Douron, which company holds both SOC 2 Type 1 certifications ?

Between BROSA and Douron, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — BROSA or Douron ?

Which company is PCI DSS compliant — BROSA or Douron ?

Between BROSA and Douron, which company complies with HIPAA regulations for healthcare data ?

Between BROSA and Douron, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2025-3261

Risk Information

CVE-2025-12421

Risk Information

CVE-2025-12559

Risk Information

CVE-2025-13765

CVE-2025-13758