Comparison Overview

Coillte

VS

ERH Consult

Coillte

Dublin Road, Newtownmountkennedy, County Wicklow, A63 DN25, IE
Last Update: 2025-05-06 (UTC)
Between 900 and 1000
http://www.coillte.ie

Excellent

Welcome to Coillte's LinkedIn Company page. Established in 1989, Coillte is proud to be the custodian of 440,000 hectares or 7% of Ireland’s land. This is primarily forested land and makes Coillte Ireland's largest forest manager and largest provider of outdoor recreation. Coillte also develops green energy projects, produces panel boards and delivers nature conservation projects of scale. Coillte is focused on delivering the multiple benefits from it's forests and land for climate, nature, wood and people. Coillte is part of a wider forestry sector, that together manages approximately 11% of Ireland's land, supports 12,000 jobs and contributes €2.3bn to the economy annually. Our purpose is to manage the state forests on behalf of the people of Ireland. Our vision is to create a sustainable future for all. Our mission is to balance and deliver the multiple benefits of our forests to society. Learn more about Coillte at www.coillte.ie. See our Linkedin house rules here: https://bit.ly/3LXrIJJ

NAICS: 33441
NAICS Definition: Semiconductor and Other Electronic Component Manufacturing
Employees: 412
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

ERH Consult

Àvila 138. 3a planta Barcelona, 08018, ES
Last Update: 2025-05-01 (UTC)

Excellent

Between 900 and 1000
https://www.socotec.es

ENERGÍA Y RECURSOS HIDRÁULICOS, CONSULTORÍA TÉCNICA S.L. (ERH Consult ERH) (Energy and Water Resources, Technical Consulting, Ltd) is an engineering company specializing in renewable energy, mainly hydroelectric, and water treatment (Water Cycle, desalination and water treatment). This Spanish engineering, with international vocation, operates in Spain and South America, especially in Chile, which has a permanent presence and which is contributing its expertise in the growing hydropower market in this country. ENERGÍA Y RECURSOS HIDRÁULICOS, CONSULTORÍA TÉCNICA S.L. (ERH Consult ERH) born in 2012 on the initiative of a team of engineers with extensive experience of over 20 years in the field of renewable energy, water and water treatment technologies. Shareholders of ERH Consult are engineering firms CICSA and AZM Enginyers and the industrial group Auxiliar d'Explotacions Energètiques. ERH Consult focuses its activities with the aim of becoming an engineering milestone in the development of any project in the field of water and energy. We offer our services to private clients and public Administration. Efficacy, rigor and commitment are principles that underpin our work philosophy. Our expertise and experience allows us to identify business opportunities related to our activity, supporting developers and investors throughout the project development.

NAICS: 33441
NAICS Definition: Semiconductor and Other Electronic Component Manufacturing
Employees: 10,001+
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/coillte.jpeg
Coillte
ISO 27001
Not verified
SOC 2
Not verified
GDPR
No public badge
PCI DSS
No public badge
https://images.rankiteo.com/companyimages/defaultcompany.jpeg
ERH Consult
ISO 27001
Not verified
SOC 2
Not verified
GDPR
No public badge
PCI DSS
No public badge
Compliance Summary
Coillte
100%
Compliance Rate
0/4 Standards Verified
ERH Consult
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Renewable Energy Semiconductor Manufacturing Industry Average (This Year)

No incidents recorded for Coillte in 2025.

Incidents vs Renewable Energy Semiconductor Manufacturing Industry Average (This Year)

No incidents recorded for ERH Consult in 2025.

Incident History — Coillte (X = Date, Y = Severity)

Coillte cyber incidents detection timeline including parent company and subsidiaries

Incident History — ERH Consult (X = Date, Y = Severity)

ERH Consult cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/coillte.jpeg
Coillte
Incidents

No Incident

https://images.rankiteo.com/companyimages/defaultcompany.jpeg
ERH Consult
Incidents

No Incident

FAQ

Both Coillte company and ERH Consult company demonstrate a comparable AI risk posture, with strong governance and monitoring frameworks in place.

Historically, ERH Consult company has disclosed a higher number of cyber incidents compared to Coillte company.

In the current year, ERH Consult company and Coillte company have not reported any cyber incidents.

Neither ERH Consult company nor Coillte company has reported experiencing a ransomware attack publicly.

Neither ERH Consult company nor Coillte company has reported experiencing a data breach publicly.

Neither ERH Consult company nor Coillte company has reported experiencing targeted cyberattacks publicly.

Neither Coillte company nor ERH Consult company has reported experiencing or disclosing vulnerabilities publicly.

Neither Coillte company nor ERH Consult company has publicly disclosed detailed information about the number of their subsidiaries.

Coillte company employs more people globally than ERH Consult company, reflecting its scale as a Renewable Energy Semiconductor Manufacturing.

Latest Global CVEs (Not Company-Specific)

Description

Formbricks is an open source qualtrics alternative. Prior to version 4.0.1, Formbricks is missing JWT signature verification. This vulnerability stems from a token validation routine that only decodes JWTs (jwt.decode) without verifying their signatures. Both the email verification token login path and the password reset server action use the same validator, which does not check the token’s signature, expiration, issuer, or audience. If an attacker learns the victim’s actual user.id, they can craft an arbitrary JWT with an alg: "none" header and use it to authenticate and reset the victim’s password. This issue has been patched in version 4.0.1.

Published
Date
2025-09-26
Updated
Date
2025-09-26
Risk Information
cvss3
Base: 9.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L
References
Description

Apollo Studio Embeddable Explorer & Embeddable Sandbox are website embeddable software solutions from Apollo GraphQL. Prior to Apollo Sandbox version 2.7.2 and Apollo Explorer version 3.7.3, a cross-site request forgery (CSRF) vulnerability was identified. The vulnerability arises from missing origin validation in the client-side code that handles window.postMessage events. A malicious website can send forged messages to the embedding page, causing the victim’s browser to execute arbitrary GraphQL queries or mutations against their GraphQL server while authenticated with the victim’s cookies. This issue has been patched in Apollo Sandbox version 2.7.2 and Apollo Explorer version 3.7.3.

Published
Date
2025-09-26
Updated
Date
2025-09-26
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:N
References
Description

A security vulnerability has been detected in Portabilis i-Educar up to 2.10. Affected by this vulnerability is an unknown functionality of the file /consulta-dispensas. Such manipulation leads to improper authorization. The attack may be launched remotely. The exploit has been disclosed publicly and may be used.

Published
Date
2025-09-26
Updated
Date
2025-09-26
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A weakness has been identified in Portabilis i-Educar up to 2.10. Affected is an unknown function of the file /module/Api/aluno. This manipulation of the argument aluno_id causes improper authorization. The attack may be initiated remotely. The exploit has been made available to the public and could be exploited.

Published
Date
2025-09-26
Updated
Date
2025-09-26
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A security flaw has been discovered in Tencent WeKnora 0.1.0. This impacts the function testEmbeddingModel of the file /api/v1/initialization/embedding/test. The manipulation of the argument baseUrl results in server-side request forgery. The attack can be launched remotely. The exploit has been released to the public and may be exploited. It is advisable to upgrade the affected component. The vendor responds: "We have confirmed that the issue mentioned in the report does not exist in the latest releases".

Published
Date
2025-09-26
Updated
Date
2025-09-26
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References