What is the official website of CBRE Industrial ?

The official website of CBRE Industrial is http://industrialcbre.com/.

What is CBRE Industrial's cybersecurity risk score?

CBRE Industrial has an AI-generated cybersecurity risk score of 772 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has CBRE Industrial experienced?

According to Rankiteo, CBRE Industrial currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has CBRE Industrial been affected by any supply chain cyber incidents ?

According to Rankiteo, CBRE Industrial has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does CBRE Industrial have SOC 2 Type 1 certification ?

According to Rankiteo, CBRE Industrial is not certified under SOC 2 Type 1.

Does CBRE Industrial have SOC 2 Type 2 certification ?

According to Rankiteo, CBRE Industrial does not hold a SOC 2 Type 2 certification.

Does CBRE Industrial comply with GDPR ?

According to Rankiteo, CBRE Industrial is not listed as GDPR compliant.

Does CBRE Industrial have PCI DSS certification ?

According to Rankiteo, CBRE Industrial does not currently maintain PCI DSS compliance.

Does CBRE Industrial comply with HIPAA ?

According to Rankiteo, CBRE Industrial is not compliant with HIPAA regulations.

Does CBRE Industrial have ISO 27001 certification ?

According to Rankiteo,CBRE Industrial is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does CBRE Industrial operate in ?

CBRE Industrial operates primarily in the Leasing Non-residential Real Estate industry.

How many employees does CBRE Industrial have ?

CBRE Industrial employs approximately None employees people worldwide.

Does CBRE Industrial own any subsidiaries ?

CBRE Industrial presently has no subsidiaries across any sectors.

How many LinkedIn followers does CBRE Industrial have ?

CBRE Industrial's official LinkedIn profile has approximately followers.

What is the NAICS classification code for CBRE Industrial ?

CBRE Industrial is classified under the NAICS code 53112, which corresponds to Lessors of Nonresidential Buildings (except Miniwarehouses).

Does CBRE Industrial have a Crunchbase profile ?

No, CBRE Industrial does not have a profile on Crunchbase.

Does CBRE Industrial have a LinkedIn profile ?

Yes, CBRE Industrial maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/cbre-industrial.

How many cybersecurity incidents has CBRE Industrial experienced ?

As of June 16, 2026, Rankiteo reports that CBRE Industrial has not experienced any cybersecurity incidents.

How many peer or competitor companies does CBRE Industrial have ?

CBRE Industrial has an estimated 1,909 peer or competitor companies worldwide.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

CBRE Industrial

Boost Score +25 with badge (5 left)

772

/1000

Fair

797

/1000

Fair

CBRE Industrial Vendor Cyber Rating & Cyber Score

industrialcbre.com

Add Your Compliance Badge

La división Industrial de CBRE ofrece a todos nuestros potenciales ocupantes e inversores una identificación rápida de la oferta de espacios logísticos e industriales que gestionamos en España.

CBRE Industrial A.I CyberSecurity Scoring

Scoring History

CBRE Industrial

CBRE Industrial CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

No data available

Loading…

A.I.

CBRE Industrial Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for CBRE Industrial

Incidents vs Leasing Non-residential Real Estate Industry Avg (This Year)

No incidents recorded for CBRE Industrial in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for CBRE Industrial in 2026.

Incident Types CBRE Industrial vs Leasing Non-residential Real Estate Industry Avg (This Year)

No incidents recorded for CBRE Industrial in 2026.

Incident History - CBRE Industrial (X = Date, Y = Severity)

Loading…

SUBSIDIARY

CBRE Industrial Subsidiaries

CBRE Industrial

Leasing Non-residential Real Estate

Website: http://industrialcbre.com/

Company Size: None employees

CBREReal Estate

CBRE UKReal Estate

CBRE BrasilLeasing Non-residential Real Estate

Trammell Crow CompanyReal Estate

High Street ResidentialReal Estate

CBRE Data Center SolutionsReal Estate

CBRE MéxicoReal Estate

CBRE CanadaLeasing Non-residential Real Estate

CBRE Industrial & LogisticsReal Estate

CBRE Capital MarketsReal Estate

CBRE Project ManagementReal Estate

CBRE Asia PacificReal Estate

CBRE GermanyReal Estate

CBRE Property ManagementLeasing Non-residential Real Estate

CBRE MENAReal Estate

United Tower | Bahrain BayReal Estate

CBRE NederlandReal Estate

CBRE PortugalReal Estate

Highlights 2016Real Estate

CBRE RetailLeasing Non-residential Real Estate

CBRE PolandReal Estate

CBRE ChileLeasing Non-residential Real Estate

CBRE SwitzerlandReal Estate

CBRE Czech RepublicReal Estate

CBRE NorwayReal Estate

CBRE AustriaReal Estate

CBRE BelgiumReal Estate

CBRE IrelandReal Estate

CBRE Ireland Industrial & LogisticsTransportation, Logistics, Supply Chain and Storage

CBRE RomaniaLeasing Non-residential Real Estate

CBRE Valuation and Advisory ServicesReal Estate

CBRE ItalyReal Estate

CBRE/New EnglandCommercial Real Estate

CBRE ArgentinaReal Estate

Phicap PropertyReal Estate

CBRE EspañaReal Estate

CBRE ResidencialReal Estate

CBRE OficinasLeasing Non-residential Real Estate

Loading…

CBRE Industrial Similar Companies

Loading…

NEWS

CBRE Industrial CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

December 09, 2025 06:19 PM

CBRE Arranges Sale of 10-Property Industrial Portfolio

Investcorp Acquires Prime Assets in Northeast and Florida Totaling More Than 482,000 Sq. Ft. CBRE has arranged the sale of a last-mile...

Read Article

November 18, 2025 08:00 AM

Zacks Industry Outlook Highlights CBRE Group, Jones Lang LaSalle and Newmark

CBRE Group emerges as a potential bright spot as outsourcing trends and tech investments create openings despite sector headwinds.

Read Article

November 04, 2025 08:00 AM

Mexico City Industrial Market Reaches Record Absorption in 3Q25

CBRE reports record absorption and strong construction in Mexico City's industrial market, driven by nearshoring and high foreign...

Read Article

November 03, 2025 08:00 AM

AI Necessitates New Blueprint for Digital Infrastructure

Artificial intelligence (AI) companies are driving strong demand for data centers across North America that have exceptionally large power...

Read Article

July 29, 2025 07:00 AM

Georgia Earns No. 1 Tech Hub Ranking from Business Facilities Magazine

It was announced todayIt was announced today that Georgia's capital city of Atlanta earned the No. 1 Tech Hub spot by Business Facilities...

Read Article

July 08, 2025 07:00 AM

Monitoring The Rise in Technology Expenditures - By Robert Mandelbaum, John Pomposello and Adam Barry

From 2023 to 2024, IT Department expenditures at the properties that participated in CBRE's annual Trends® in the Hotel Industry survey increased by 4.6%.

Read Article

June 24, 2025 07:00 AM

Global Data Center Trends 2025

Limited power availability remains the prime inhibitor of global data center growth in certain core hub markets, leading to opportunities in...

Read Article

May 15, 2025 07:00 AM

Study reveals demand for tech talent in APAC staying strong

CBRE's latest Global Tech Talent Guidebook 2025 reveals that the tech industry's long-term growth prospects and demand for talent remain...

Read Article

May 14, 2025 07:00 AM

Hyderabad recognised as major global hub for life sciences manufacturing: CBRE report

Hyderabad has emerged as one of the top global centres for life sciences manufacturing, according to CBRE's newly released report, Global Life Sciences Atlas.

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-53430

SUMMARY

Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in elixir-grpc grpc (GRPC.Compressor.Gzip, GRPC.Message modules) allows a denial of service via a gzip decompression bomb. This vulnerability is associated with program files lib/grpc/compressor/gzip.ex, lib/grpc/message.ex and program routines 'Elixir.GRPC.Compressor.Gzip':decompress/1, 'Elixir.GRPC.Message':from_data/2. 'Elixir.GRPC.Compressor.Gzip':decompress/1 calls :zlib.gunzip/1 directly on attacker-controlled bytes with no decompressed-size limit, ratio check, or incremental decoding. Because this module is the registered gzip GRPC.Compressor implementation, it is invoked automatically whenever an incoming gRPC frame carries the grpc-encoding: gzip header. :zlib.gunzip/1 allocates the entire decompressed result as a single binary, so a small highly compressible payload (for example a few kilobytes of zeros, which gzip compresses at roughly 1000:1) expands to multiple gigabytes inside a single call. The max_receive_message_length limit is enforced only against the already-decompressed message, so it provides no protection. An unauthenticated remote peer can send a single crafted frame to exhaust the BEAM node's heap and trigger an out-of-memory kill. This issue affects grpc: from 0.4.0 before 1.0.0.

Published

Date2026-06-15

Updated

Date2026-06-15

RISK INFORMATION (Score: )

cvss4

Base Score: 8.7

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

CVE-2026-48854

SUMMARY

Allocation of Resources Without Limits or Throttling vulnerability in elixir-grpc grpc allows unauthenticated attackers to exhaust the BEAM's memory and crash the server by streaming a large or slow-trickle unary request body. 'Elixir.GRPC.Server.Adapters.Cowboy.Handler':read_full_body/3 (lib/grpc/server/adapters/cowboy/handler.ex) accumulates every received chunk into a single growing binary with no size cap. Additionally, when the client omits the grpc-timeout header, the per-chunk read timeout resolves to :infinity, allowing a slow-trickle client to keep the connection alive indefinitely while memory grows. A single connection is sufficient to exhaust server memory and crash the node. This issue affects grpc from 0.3.1 before 1.0.0.

Published

Date2026-06-15

Updated

Date2026-06-15

RISK INFORMATION (Score: )

cvss4

Base Score: 8.7

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

CVE-2026-48853

SUMMARY

Deserialization of Untrusted Data and Allocation of Resources Without Limits or Throttling vulnerabilities in elixir-grpc grpc allow unauthenticated attackers to crash the BEAM node via atom table exhaustion and, when a decoded term flows into a call site that invokes it, achieve remote code execution on the server. 'Elixir.GRPC.Codec.Erlpack':decode/2 (lib/grpc/codec/erlpack.ex) calls :erlang.binary_to_term/1 on the raw gRPC message body without the :safe option, no size bound, and no type guard. Any unauthenticated peer that sends a request with Content-Type: application/grpc+erlpack can send a crafted payload that mints arbitrary new atoms (which are never garbage-collected, exhausting the bounded atom table and crashing the VM) or that encodes a fun term which, if applied anywhere downstream, executes attacker-controlled code inside the server process. This issue affects grpc from 0.4.0 before 1.0.0.

Published

Date2026-06-15

Updated

Date2026-06-15

RISK INFORMATION (Score: )

cvss4

Base Score: 9.2

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

CVE-2026-48723

SUMMARY

The browserstack-cypress-cli is BrowserStack's CLI which allows users to run Cypress tests on BrowserStack. Versions prior to 1.36.4 are vulnerable to OS command injection via the cypress_config_file configuration parameter. In readCypressConfigUtil.js, the loadJsFile() function constructs a shell command by interpolating the user-controlled cypress_config_filepath value into a template literal, then executes it via child_process.execSync(). Shell metacharacters in the config path (specifically " and ;) allow breaking out of the quoted argument and injecting arbitrary commands. This issue has been fixed in version 1.36.6.

Published

Date2026-06-15

Updated

Date2026-06-15

RISK INFORMATION (Score: 7.8)

cvss3

Base Score: 7.8

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

1.8

REFERENCES

CVE-2026-48599

SUMMARY

Authorization Bypass Through User-Controlled Key vulnerability in elixir-grpc grpc allows authenticated attackers to access or modify resources belonging to other users by smuggling a conflicting value for any path-bound field via the query string or request body. In 'Elixir.GRPC.Server.Transcode':map_request/5 (lib/grpc/server/transcode.ex), all three clauses use Map.merge/2 with path bindings as the first argument, giving them the lowest merge precedence. A request such as GET /users/me/profile?user_id=victim (or a POST with {"user_id": "victim"} when body: "*") yields a decoded protobuf struct where the path-bound field carries the attacker-supplied value rather than the router-extracted value. Any handler that uses the path-bound field for authorization, multi-tenancy scoping, or ownership checks is silently bypassed. This issue affects grpc from 0.8.0 before 1.0.0.

Published

Date2026-06-15

Updated

Date2026-06-15

RISK INFORMATION (Score: )

cvss4

Base Score: 7.6

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…