Comparison Overview

Q: Between Cisco company and KPIT company, which one has the best AI Cybersecurity Score ?

KPIT company demonstrates a stronger AI Cybersecurity Score compared to Cisco company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Q: Between Cisco company and KPIT company, which one has experienced more cyber incidents in the past ?

Cisco company has historically faced a number of disclosed cyber incidents, whereas KPIT company has not reported any.

Q: Between Cisco company and KPIT company, which one has experienced more cyber incidents this year ?

In the current year, Cisco company has reported more cyber incidents than KPIT company.

Q: Between Cisco company and KPIT company, which one has experienced at least one ransomware attack ?

Cisco company has confirmed experiencing a ransomware attack, while KPIT company has not reported such incidents publicly.

Q: Between Cisco company and KPIT company, which one has experienced at least one data breach ?

Cisco company has disclosed at least one data breach, while the other KPIT company has not reported such incidents publicly.

Q: Between Cisco company and KPIT company, which one has experienced at least one targeted cyberattack ?

Cisco company has reported targeted cyberattacks, while KPIT company has not reported such incidents publicly.

Q: Between Cisco company and KPIT company, which one has experienced at least one vulnerability ?

Cisco company has disclosed at least one vulnerability, while KPIT company has not reported such incidents publicly.

Q: Between Cisco company and KPIT company, which one holds the most compliance certifications ?

Neither Cisco nor KPIT holds any compliance certifications.

Q: Between Cisco company and KPIT company, which one has the most subsidiaries ?

Cisco company has more subsidiaries worldwide compared to KPIT company.

Cisco

Tasman Way, San Jose, CA, US, 95134

Last Update: 2025-12-11

View Profile

Between 600 and 649

http://www.cisco.com

Cisco is the worldwide technology leader that is revolutionizing the way organizations connect and protect in the AI era. For more than 40 years, Cisco has securely connected the world. With its industry leading AI-powered solutions and services, Cisco enables its customers, partners and communities to unlock innovation, enhance productivity and strengthen digital resilience. With purpose at its core, Cisco remains committed to creating a more connected and inclusive future for all.

NAICS: 5112

NAICS Definition: Software Publishers

Employees: 95,475

Subsidiaries: 34

12-month incidents

6

Known data breaches

3

Attack type number

5

View Profile

KPIT

SEZ Unit-2 , Plot no- 17, Phase 3, Hinjewadi Rajiv Gandhi Infotech Park, Hinjawadi, Pune, Maharashtra, IN, 411057

Last Update: 2025-12-09

Between 750 and 799

https://www.kpit.com/

About KPIT KPIT is reimagining the future of mobility, forging ahead with group companies and partners to shape a world that is cleaner, smarter, and safer. With over 25 years of specialized expertise in Mobility, KPIT is accelerating the transformation towards Software and AI-Defined Vehicles through its advanced solutions, platforms, and products—propelled by mobility-infused AI frameworks, software craftsmanship, and systems integration mastery. Vision in Motion Fueled by 2000+ vehicle production programs and powering 20+ million vehicles on the road with KPIT software, our experience in unmatched. At the same time, we push boundaries, developing solutions that enable Mobility OEMs to innovate at speed and scale. For more details, visit www.kpit.com

NAICS: 5112

NAICS Definition: Software Publishers

Employees: 16,309

Subsidiaries: 0

12-month incidents

0

Known data breaches

0

Attack type number

0

Cisco

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

KPIT

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Software Development Industry Average (This Year)

Cisco has 934.48% more incidents than the average of same-industry companies with at least one recorded incident.

Incidents vs Software Development Industry Average (This Year)

No incidents recorded for KPIT in 2025.

Incident History — Cisco (X = Date, Y = Severity)

Cisco cyber incidents detection timeline including parent company and subsidiaries

Incident History — KPIT (X = Date, Y = Severity)

KPIT cyber incidents detection timeline including parent company and subsidiaries

Cisco

Incidents

Date Detected: 11/2025

Type:Ransomware

Attack Vector: Exploited Vulnerabilities (unspecified), Phishing/Social Engineering (likely), DDoS Attacks, Threatening Calls to Executives

Motivation: Financial Gain (ransomware proceeds, access sales)

Blog: Blog

Date Detected: 9/2025

Type:Cyber Attack

Attack Vector: Vulnerability Exploitation (Cisco ASA), Malware Implantation, Command Execution, Potential Data Exfiltration

Motivation: Espionage

Blog: Blog

Date Detected: 8/2025

Type:Vulnerability

Attack Vector: Remote Code Execution (RCE), Unauthenticated Access to VPN Endpoints, Crafted HTTP Requests

Motivation: Opportunistic Exploitation, Potential Data Theft, Malware Distribution

Blog: Blog

KPIT

Incidents

No Incident

KPIT company demonstrates a stronger AI Cybersecurity Score compared to Cisco company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Cisco company has historically faced a number of disclosed cyber incidents, whereas KPIT company has not reported any.

In the current year, Cisco company has reported more cyber incidents than KPIT company.

Cisco company has confirmed experiencing a ransomware attack, while KPIT company has not reported such incidents publicly.

Cisco company has disclosed at least one data breach, while the other KPIT company has not reported such incidents publicly.

Cisco company has reported targeted cyberattacks, while KPIT company has not reported such incidents publicly.

Cisco company has disclosed at least one vulnerability, while KPIT company has not reported such incidents publicly.

Neither Cisco nor KPIT holds any compliance certifications.

Neither company holds any compliance certifications.

Cisco company has more subsidiaries worldwide compared to KPIT company.

Cisco company employs more people globally than KPIT company, reflecting its scale as a Software Development.

Neither Cisco nor KPIT holds SOC 2 Type 1 certification.

Neither Cisco nor KPIT holds SOC 2 Type 2 certification.

Neither Cisco nor KPIT holds ISO 27001 certification.

Neither Cisco nor KPIT holds PCI DSS certification.

Neither Cisco nor KPIT holds HIPAA certification.

Neither Cisco nor KPIT holds GDPR certification.

Description

NXLog Agent before 6.11 can load a file specified by the OPENSSL_CONF environment variable.

Published

Date

2025-12-14

Updated

Date

2025-12-14

Risk Information

cvss3

Base: 8.1

Severity: HIGH

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

References

https://docs.nxlog.co/agent/current/release-notes.html#nxlog-agent-6-11

Description

uriparser through 0.9.9 allows unbounded recursion and stack consumption, as demonstrated by ParseMustBeSegmentNzNc with large input containing many commas.

Published

Date

2025-12-14

Updated

Date

2025-12-14

Risk Information

cvss3

Base: 2.9

Severity: HIGH

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

References

Description

A vulnerability was detected in Mayan EDMS up to 4.10.1. The affected element is an unknown function of the file /authentication/. The manipulation results in cross site scripting. The attack may be performed from remote. The exploit is now public and may be used. Upgrading to version 4.10.2 is sufficient to fix this issue. You should upgrade the affected component. The vendor confirms that this is "[f]ixed in version 4.10.2". Furthermore, that "[b]ackports for older versions in process and will be out as soon as their respective CI pipelines complete."

Published

Date

2025-12-14

Updated

Date

2025-12-14

Risk Information

cvss2

Base: 5.0

Severity: LOW

AV:N/AC:L/Au:N/C:N/I:P/A:N

cvss3

Base: 4.3

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

cvss4

Base: 5.3

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

MJML through 4.18.0 allows mj-include directory traversal to test file existence and (in the type="css" case) read files. NOTE: this issue exists because of an incomplete fix for CVE-2020-12827.

Published

Date

2025-12-14

Updated

Date

2025-12-14

Risk Information

cvss3

Base: 4.5

Severity: HIGH

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:L

References

https://github.com/mjmlio/mjml/issues/3018

Description

A half-blind Server Side Request Forgery (SSRF) vulnerability exists in kube-controller-manager when using the in-tree Portworx StorageClass. This vulnerability allows authorized users to leak arbitrary information from unprotected endpoints in the control plane’s host network (including link-local or loopback services).

Published

Date

2025-12-14

Updated

Date

2025-12-14

Risk Information

cvss3

Base: 5.8

Severity: HIGH

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N

References

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Cisco

VS

KPIT

Cisco

KPIT

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Software Development Industry Average (This Year)

Incidents vs Software Development Industry Average (This Year)

Incident History — Cisco (X = Date, Y = Severity)

Incident History — KPIT (X = Date, Y = Severity)

Notable Incidents

No Incident

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2025-67900

Risk Information

CVE-2025-67899

Risk Information

CVE-2025-14691

Risk Information

CVE-2025-67898

Risk Information

CVE-2025-13281

Risk Information

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Cisco

VS

KPIT

Cisco

KPIT

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Software Development Industry Average (This Year)

Incidents vs Software Development Industry Average (This Year)

Incident History — Cisco (X = Date, Y = Severity)

Incident History — KPIT (X = Date, Y = Severity)

Notable Incidents

🔒 Incident : Ransomware CIS0702107111125

🔒 Incident : Cyber Attack CIS5802058092725

🔒 Incident : Vulnerability CIS0692106093025

No Incident

FAQ

Between Cisco company and KPIT company, which one has the best AI Cybersecurity Score ?

Between Cisco company and KPIT company, which one has experienced more cyber incidents in the past ?

Between Cisco company and KPIT company, which one has experienced more cyber incidents this year ?

Between Cisco company and KPIT company, which one has experienced at least one ransomware attack ?

Between Cisco company and KPIT company, which one has experienced at least one data breach ?

Between Cisco company and KPIT company, which one has experienced at least one targeted cyberattack ?

Between Cisco company and KPIT company, which one has experienced at least one vulnerability ?

Between Cisco company and KPIT company, which one holds the most compliance certifications ?

Between Cisco company and KPIT company, which one holds the fewest compliance certifications ?

Between Cisco company and KPIT company, which one has the most subsidiaries ?

Between Cisco company and KPIT company, which one has the largest number of employees ?

Between Cisco and KPIT, which company holds both SOC 2 Type 1 certifications ?

Between Cisco and KPIT, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — Cisco or KPIT ?

Which company is PCI DSS compliant — Cisco or KPIT ?

Between Cisco and KPIT, which company complies with HIPAA regulations for healthcare data ?

Between Cisco and KPIT, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2025-67900

Risk Information

CVE-2025-67899

Risk Information

CVE-2025-14691

Risk Information

CVE-2025-67898

Risk Information

CVE-2025-13281

Risk Information