CAE
Company Details
Linkedin ID:
cae
Website:
Employees number:
11,828
Number of followers:
304,805
NAICS:
3364
Industry Type:
Homepage:
cae.com
IP Addresses:
0
Company ID:
CAE_9030060
Scan Status:
In-progress
CAE Company CyberSecurity Posture
cae.com
At CAE, we equip people in critical roles with the expertise and solutions to create a safer world. As a technology company, we digitalize the physical world, deploying simulation training and critical operations support solutions. Above all else, we empower pilots, airlines, defence and security forces to perform at their best every day and when the stakes are the highest. Around the globe, we’re everywhere customers need us to be with more than 13,000 employees in approximately 250 sites and training locations in over 40 countries. CAE represents more than 75 years of industry firsts—the highest-fidelity flight, mission simulators and training programs powered by digital technologies. We embed sustainability in everything we do. Today and tomorrow, we’ll make sure our customers are ready for the moments that matter.
CAE A.I CyberSecurity Scoring
CAE Risk Score (AI oriented)Between 750 and 799
CAE
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
CAE Global Score (TPRM)XXXX
CAE
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
CAE Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
CAE Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for CAE
Incidents vs Aviation and Aerospace Component Manufacturing Industry Average (This Year)
No incidents recorded for CAE in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for CAE in 2025.
Incident Types CAE vs Aviation and Aerospace Component Manufacturing Industry Avg (This Year)
No incidents recorded for CAE in 2025.
Incident History — CAE (X = Date, Y = Severity)
CAE cyber incidents detection timeline including parent company and subsidiaries
CAE Company Subsidiaries
At CAE, we equip people in critical roles with the expertise and solutions to create a safer world. As a technology company, we digitalize the physical world, deploying simulation training and critical operations support solutions. Above all else, we empower pilots, airlines, defence and security forces to perform at their best every day and when the stakes are the highest. Around the globe, we’re everywhere customers need us to be with more than 13,000 employees in approximately 250 sites and training locations in over 40 countries. CAE represents more than 75 years of industry firsts—the highest-fidelity flight, mission simulators and training programs powered by digital technologies. We embed sustainability in everything we do. Today and tomorrow, we’ll make sure our customers are ready for the moments that matter.
Loading...
CAE Similar Companies
Federal Aviation Administration
The FAA is on the leading edge of a new frontier in commercial space transportation, building the next generation (NextGen) of satellite-based navigation systems, and fostering the safe integration of unmanned aerial systems into our airspace. We can only dream of what the next 50 years of American
Bombardier
Bombardier is a global leader in aviation, focused on designing, manufacturing, and servicing the world's most exceptional business jets. Bombardier’s Challenger and Global aircraft families are renowned for their cutting-edge innovation, cabin design, performance, and reliability. Bombardier has a
Textron Inc. is a multi-industry company that leverages its global network of aircraft, defense, industrial and finance businesses to provide customers with innovative solutions and services. Textron is known around the world for its powerful brands such as Bell, Cessna, Beechcraft, Pipistrel, Jacob
NASA - National Aeronautics and Space Administration
For more than 60 years, NASA has been breaking barriers to achieve the seemingly impossible—from walking on the Moon to pushing the boundaries of human spaceflight farther than ever before. We work in space and around the world in laboratories and wind tunnels, on airfields and in control rooms to e
Embraer
A global aerospace company headquartered in Brazil, Embraer has businesses in Commercial and Executive Aviation, Defense & Security, and Agricultural Aviation. The company designs, develops, manufactures and markets aircraft and systems, providing Services and Support to customer after-sales. Sinc
SpaceX
SpaceX designs, manufactures and launches the world’s most advanced rockets and spacecraft. The company was founded in 2002 by Elon Musk to revolutionize space transportation, with the ultimate goal of making life multiplanetary. SpaceX has gained worldwide attention for a series of historic mil
Airbus
Airbus pioneers sustainable aerospace for a safe and united world. The Company constantly innovates to provide efficient and technologically-advanced solutions in aerospace, defence, and connected services. In commercial aircraft, Airbus designs and manufactures modern and fuel-efficient airliners
Safran
Safran is an international high-technology group, operating in the aviation (propulsion, equipment and interiors), defense and space markets. Its core purpose is to contribute to a safer, more sustainable world, where air transport is more environmentally friendly, comfortable and accessible. Safran
We are building a road to space for the benefit of Earth, humanity’s blue origin. Our team is focused on radically reducing the cost of access to space and harnessing its vast resources while mobilizing future generations to realize this mission. Blue Origin builds reusable rocket engines, launch ve
.png)
CAE CyberSecurity News
November 05, 2025 08:00 AM
University of Houston Earns National Redesignation for Cyber Research Excellence
The University of Houston has once again been recognized by the National Centers of Academic Excellence in Cybersecurity program for Cyber...
September 19, 2025 07:00 AM
WSU designated as center of excellence in cyber research
Washington State University has been named a National Center of Academic Excellence in Cyber Research (CAE-R) by the U.S. National Security...
August 26, 2025 07:00 AM
KU designated National Center of Academic Excellence in Cyber Research
LAWRENCE — Researchers and faculty members at the University of Kansas' Department of Electrical Engineering & Computer Science and...
August 19, 2025 07:00 AM
SRU earns NCAE-C Cyber Defense designation
As an institution at the forefront of preparing professionals to enter the highly skilled cybersecurity workforce, Slippery Rock…
June 18, 2025 07:00 AM
MassBay Recognized for Cybersecurity Excellence, Becoming the First Community College in Massachusetts Named a National Center of Academic Excellence in Cyber Defense
MassBay Community College was recently recognized by the National Centers of Academic Excellence in Cybersecurity (NCAE-C), earning the designation of a Center...
June 05, 2025 07:00 AM
SF designated a Center for Academic Excellence in Cyber Defense
Santa Fe College's A.S. in IT Security has been designated as a Center of Academic Excellence in Cyber Defense. The NSA CAE designation was...
May 12, 2025 07:00 AM
SBU Recognized as National Center of Academic Excellence in Cybersecurity Research
Stony Brook University has been officially designated as a National Center of Academic Excellence in Cybersecurity Research (CAE-R) by the...
April 25, 2025 07:00 AM
SLU designated key role in cyber defense
Saint Louis University has been designated a National Center of Academic Excellence in Cyber Defense (CAE-CD) by the National Security...
April 21, 2025 07:00 AM
Carnegie Mellon University Re-Designated as a National Center for Academic Excellence in Cybersecurity for Cyber Research through 2029 and Cyber Operations through 2030 - Information Networking Institute - College of Engineering
Under the leadership of Information Networking Institute (INI) Director Dr. Dena Haritos Tsamitis, with support from INI faculty members Dr.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
CAE CyberSecurity History Information
Official Website of CAE
The official website of CAE is http://www.cae.com.
CAE’s AI-Generated Cybersecurity Score
According to Rankiteo, CAE’s AI-generated cybersecurity score is 773, reflecting their Fair security posture.
How many security badges does CAE’ have ?
According to Rankiteo, CAE currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does CAE have SOC 2 Type 1 certification ?
According to Rankiteo, CAE is not certified under SOC 2 Type 1.
Does CAE have SOC 2 Type 2 certification ?
According to Rankiteo, CAE does not hold a SOC 2 Type 2 certification.
Does CAE comply with GDPR ?
According to Rankiteo, CAE is not listed as GDPR compliant.
Does CAE have PCI DSS certification ?
According to Rankiteo, CAE does not currently maintain PCI DSS compliance.
Does CAE comply with HIPAA ?
According to Rankiteo, CAE is not compliant with HIPAA regulations.
Does CAE have ISO 27001 certification ?
According to Rankiteo,CAE is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of CAE
CAE operates primarily in the Aviation and Aerospace Component Manufacturing industry.
Number of Employees at CAE
CAE employs approximately 11,828 people worldwide.
Subsidiaries Owned by CAE
CAE presently has no subsidiaries across any sectors.
CAE’s LinkedIn Followers
CAE’s official LinkedIn profile has approximately 304,805 followers.
NAICS Classification of CAE
CAE is classified under the NAICS code 3364, which corresponds to Aerospace Product and Parts Manufacturing.
CAE’s Presence on Crunchbase
No, CAE does not have a profile on Crunchbase.
CAE’s Presence on LinkedIn
Yes, CAE maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/cae.
Cybersecurity Incidents Involving CAE
As of December 10, 2025, Rankiteo reports that CAE has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
CAE has an estimated 2,675 peer or competitor companies worldwide.
CAE CyberSecurity History Information
How many cyber incidents has CAE faced ?
Total Incidents: According to Rankiteo, CAE has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at CAE ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. Versions 3.5.4 and below contain a Stored Cross-Site Scripting (XSS) vulnerability in the /WeGIA/html/geral/configurar_senhas.php endpoint. The application does not sanitize user-controlled data before rendering it inside the employee selection dropdown. The application retrieves employee names from the database and injects them directly into HTML <option> elements without proper escaping. This issue is fixed in version 3.5.5.
Risk Information
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Description
ZITADEL is an open-source identity infrastructure tool. Versions 4.0.0-rc.1 through 4.7.0 are vulnerable to DOM-Based XSS through the Zitadel V2 logout endpoint. The /logout endpoint insecurely routes to a value that is supplied in the post_logout_redirect GET parameter. As a result, unauthenticated remote attacker can execute malicious JS code on Zitadel users’ browsers. To carry out an attack, multiple user sessions need to be active in the same browser, however, account takeover is mitigated when using Multi-Factor Authentication (MFA) or Passwordless authentication. This issue is fixed in version 4.7.1.
Risk Information
cvss3
Base: 8.0
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:N
Description
ZITADEL is an open-source identity infrastructure tool. Versions 4.7.0 and below are vulnerable to an unauthenticated, full-read SSRF vulnerability. The ZITADEL Login UI (V2) treats the x-zitadel-forward-host header as a trusted fallback for all deployments, including self-hosted instances. This allows an unauthenticated attacker to force the server to make HTTP requests to arbitrary domains, such as internal addresses, and read the responses, enabling data exfiltration and bypassing network-segmentation controls. This issue is fixed in version 4.7.1.
Risk Information
cvss3
Base: 9.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
Description
NiceGUI is a Python-based UI framework. Versions 3.3.1 and below are vulnerable to directory traversal through the App.add_media_files() function, which allows a remote attacker to read arbitrary files on the server filesystem. This issue is fixed in version 3.4.0.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Description
FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions are vulnerable to authentication bypass when the authentication type is set to "webserver." When providing an Authorization header with an arbitrary value, a session is associated with the target user regardless of valid credentials. This issue is fixed in versions 16.0.44 and 17.0.23.
Risk Information
cvss4
Base: 9.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/FreePBX/framework/commit/04224253156543cd9932b90458660b2f19fc0e35#diff-72f14a52840a61504a8e03cd195035b44e488aecd634b001bc6412a04bdc940bR20-R50
- https://github.com/FreePBX/security-reporting/security/advisories/GHSA-9jvh-mv6x-w698
- https://www.freepbx.org/watch-what-we-do-with-security-fixes-%f0%9f%91%80
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=cae' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
