Comparison Overview

CHE Centre for Higher Education

VS

Project on Indigenous Governance and Development

CHE Centre for Higher Education

Carl-Bertelsmann-Straße 256, 33311 Gütersloh, Nordrhein-Westfalen, DE
Last Update: 2025-12-03
View Profile
Between 700 and 749
http://www.che.de

The non-profit CHE Centre for Higher Education is an independent and implementation orientated think tank with an international perspective. The main focus is on the German and European higher education. We are convinced that the scientific system should be versatile to be able to offer, amid changing conditions, optimal and differentiated development opportunities to all those who want to participate in it. We operate at two levels, namely the scientific system level and the level of the individual institutions in it and we advocate suitable framework conditions that enable higher education and research institutions to act autonomously. We pursue and support developments, changes in the science system as well as socio-political and economic targets in a constructive and critical way. We point out positive results and negative developments based on solid evaluations. We draw up studies and opinions on relevant higher education research issues. In doing so we focus on manageable recommendations and their practical implementation. With our differentiated and internationally recognised ranking and other offers of information, we create transparency in regards to the activities and developments on both levels, individual higher education institutions and the scientific system. The ranking is principally a service offer with information for prospective students.

NAICS: 54172
NAICS Definition: Research and Development in the Social Sciences and Humanities
Employees: 36
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

Project on Indigenous Governance and Development

124 Mount Auburn St, Cambridge, Massachusetts, US, 02138
Last Update: 2025-12-02
Between 700 and 749
https://indigenousgov.hks.harvard.edu/

The Project on Indigenous Governance and Development at the Harvard Kennedy School is the recognized leader in practical research, teaching, leadership development, policy analysis, and pro bono advising for Native communities. With Indigenous peoples so long shut out from access to world-class and relevant educational and economic opportunities, the core mission of the Project is to arm Indigenous people themselves with the tools needed to govern effectively and to strengthen their economic, social, and cultural fabrics. These nations are being rebuilt, poverty is being pushed back, and cultures are being strengthened as Indian communities take charge of their own destinies. Based at the Ash Center for Democratic Governance and Innovation, the Project focuses on what works to strengthen Indigenous communities—and what doesn’t work. Since 1987, the Project has worked to uncover and support the conditions under which sustained, self-determined political, social, cultural, and economic strengthening can be achieved by Indigenous communities. The Project has been awarded by tribes themselves for its pioneering work fostering the Indigenous renaissance that has taken hold in the US and beyond.

NAICS: 54172
NAICS Definition: Research and Development in the Social Sciences and Humanities
Employees: 3
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/che-centre-for-higher-education.jpeg
CHE Centre for Higher Education
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/indigenous-gov.jpeg
Project on Indigenous Governance and Development
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
CHE Centre for Higher Education
100%
Compliance Rate
0/4 Standards Verified
Project on Indigenous Governance and Development
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Think Tanks Industry Average (This Year)

No incidents recorded for CHE Centre for Higher Education in 2025.

Incidents vs Think Tanks Industry Average (This Year)

No incidents recorded for Project on Indigenous Governance and Development in 2025.

Incident History — CHE Centre for Higher Education (X = Date, Y = Severity)

CHE Centre for Higher Education cyber incidents detection timeline including parent company and subsidiaries

Incident History — Project on Indigenous Governance and Development (X = Date, Y = Severity)

Project on Indigenous Governance and Development cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/che-centre-for-higher-education.jpeg
CHE Centre for Higher Education
Incidents

No Incident

https://images.rankiteo.com/companyimages/indigenous-gov.jpeg
Project on Indigenous Governance and Development
Incidents

No Incident

FAQ

CHE Centre for Higher Education company demonstrates a stronger AI Cybersecurity Score compared to Project on Indigenous Governance and Development company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, Project on Indigenous Governance and Development company has disclosed a higher number of cyber incidents compared to CHE Centre for Higher Education company.

In the current year, Project on Indigenous Governance and Development company and CHE Centre for Higher Education company have not reported any cyber incidents.

Neither Project on Indigenous Governance and Development company nor CHE Centre for Higher Education company has reported experiencing a ransomware attack publicly.

Neither Project on Indigenous Governance and Development company nor CHE Centre for Higher Education company has reported experiencing a data breach publicly.

Neither Project on Indigenous Governance and Development company nor CHE Centre for Higher Education company has reported experiencing targeted cyberattacks publicly.

Neither CHE Centre for Higher Education company nor Project on Indigenous Governance and Development company has reported experiencing or disclosing vulnerabilities publicly.

Neither CHE Centre for Higher Education nor Project on Indigenous Governance and Development holds any compliance certifications.

Neither company holds any compliance certifications.

Neither CHE Centre for Higher Education company nor Project on Indigenous Governance and Development company has publicly disclosed detailed information about the number of their subsidiaries.

CHE Centre for Higher Education company employs more people globally than Project on Indigenous Governance and Development company, reflecting its scale as a Think Tanks.

Neither CHE Centre for Higher Education nor Project on Indigenous Governance and Development holds SOC 2 Type 1 certification.

Neither CHE Centre for Higher Education nor Project on Indigenous Governance and Development holds SOC 2 Type 2 certification.

Neither CHE Centre for Higher Education nor Project on Indigenous Governance and Development holds ISO 27001 certification.

Neither CHE Centre for Higher Education nor Project on Indigenous Governance and Development holds PCI DSS certification.

Neither CHE Centre for Higher Education nor Project on Indigenous Governance and Development holds HIPAA certification.

Neither CHE Centre for Higher Education nor Project on Indigenous Governance and Development holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

Sigstore Timestamp Authority is a service for issuing RFC 3161 timestamps. Prior to 2.0.3, Function api.ParseJSONRequest currently splits (via a call to strings.Split) an optionally-provided OID (which is untrusted data) on periods. Similarly, function api.getContentType splits the Content-Type header (which is also untrusted data) on an application string. As a result, in the face of a malicious request with either an excessively long OID in the payload containing many period characters or a malformed Content-Type header, a call to api.ParseJSONRequest or api.getContentType incurs allocations of O(n) bytes (where n stands for the length of the function's argument). This vulnerability is fixed in 2.0.3.

Published
Date
2025-12-04
Updated
Date
2025-12-04
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References
Description

Monkeytype is a minimalistic and customizable typing test. In 25.49.0 and earlier, there is improper handling of user input which allows an attacker to execute malicious javascript on anyone viewing a malicious quote submission. quote.text and quote.source are user input, and they're inserted straight into the DOM. If they contain HTML tags, they will be rendered (after some escaping using quotes and textarea tags).

Published
Date
2025-12-04
Updated
Date
2025-12-04
Risk Information
cvss4
Base: 7.1
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

SysReptor is a fully customizable pentest reporting platform. Prior to 2025.102, there is a Stored Cross-Site Scripting (XSS) vulnerability allows authenticated users to execute malicious JavaScript in the context of other logged-in users by uploading malicious JavaScript files in the web UI. This vulnerability is fixed in 2025.102.

Published
Date
2025-12-04
Updated
Date
2025-12-04
Risk Information
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N
References
Description

Taiko Alethia is an Ethereum-equivalent, permissionless, based rollup designed to scale Ethereum without compromising its fundamental properties. In 2.3.1 and earlier, TaikoInbox._verifyBatches (packages/protocol/contracts/layer1/based/TaikoInbox.sol:627-678) advanced the local tid to whatever transition matched the current blockHash before knowing whether that batch would actually be verified. When the loop later broke (e.g., cooldown window not yet passed or transition invalidated), the function still wrote that newer tid into batches[lastVerifiedBatchId].verifiedTransitionId after decrementing batchId. Result: the last verified batch could end up pointing at a transition index from the next batch (often zeroed), corrupting the verified chain pointer.

Published
Date
2025-12-04
Updated
Date
2025-12-04
Risk Information
cvss4
Base: 8.0
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A flaw has been found in youlaitech youlai-mall 1.0.0/2.0.0. Affected is the function getById/updateAddress/deleteAddress of the file /mall-ums/app-api/v1/addresses/. Executing manipulation can lead to improper control of dynamically-identified variables. The attack can be executed remotely. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-12-04
Updated
Date
2025-12-04
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References