Comparison Overview
Carat from Fiserv

Carat from Fiserv
255 Fiserv Drive, Brookfield, 53045, US
Last Update: 28/03/2026
Carat from Fiserv is the global operating system for our enterprise clients – it is the set of services, connections and applications businesses need to thrive. Carat helps our clients create unified customer experiences – connected across devices, channels and geograph...

Vanguard
100 Vanguard Blvd, Valley Forge, 19482, US
Last Update: 02/04/2026
We are a community of 50 million who think—and feel—differently about investing. Together, we’re changing the way the world invests. For over 50 years, Vanguard has helped people pursue their financial goals with a spotlight on long-term value and low costs. We’ve mad...
Compliance Ranges Comparison

Carat from Fiserv







Vanguard






Benchmark & Cyber Underwriting Signals
Incidents vs Financial Services Industry Avg (This Year)
No incidents recorded for Carat from Fiserv in 2026.
Incidents vs Financial Services Industry Avg (This Year)
No incidents recorded for Vanguard in 2026.
Incident History - Carat from Fiserv (X = Date, Y = Severity)
Carat from Fiserv cyber incidents detection timeline including parent company and subsidiaries.
Incident History - Vanguard (X = Date, Y = Severity)
Vanguard cyber incidents detection timeline including parent company and subsidiaries.
Notable Incidents

Carat from Fiserv

Vanguard
FAQ
Latest Global CVEs
A vulnerability was detected in HdrHistogram up to 2.2.2. Affected by this issue is the function org.HdrHistogram.AbstractHistogram.decodeFromCompressedByteBuffer of the file src/main/java/org/HdrHistogram/AbstractHistogram.java. The manipulation of the argument lengthOfCompressedContents results in uncontrolled memory allocation. The attack needs to be approached locally. The exploit is now public and may be used. The project was informed of the problem early through an issue report but has not responded yet.
A vulnerability was found in code-projects Online Job Portal 1.0. The affected element is an unknown function of the file login.php. Performing a manipulation of the argument txtUser/txtPass results in sql injection. The attack may be initiated remotely. The exploit has been made public and could be used.
A vulnerability has been found in itsourcecode Hospital Management System 1.0. Impacted is an unknown function of the file /patientappointment.php. Such manipulation of the argument patiente leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
A vulnerability was detected in code-projects Assessment Management 1.0. This vulnerability affects unknown code of the file /lecturer/marking-scheme.php. The manipulation of the argument smarksrange[] results in sql injection. It is possible to launch the attack remotely. The exploit is now public and may be used.
A flaw has been found in code-projects Assessment Management 1.0. This issue affects some unknown processing of the file /lecturer/marking-scheme.php of the component Database Query Handler. This manipulation of the argument squestions[] causes sql injection. The attack can be initiated remotely. The exploit has been published and may be used.