Comparison Overview

CVI Refrigerantes

VS

Yanghe Distillery (江苏洋河酒厂股份有限公司)

CVI Refrigerantes

Santa Maria - Passo Fundo - Vera Cruz - Bagé - Santana do Livramento - Erechim, Rio Grande do Sul, BR
Last Update: 2025-03-15 (UTC)
Between 900 and 1000
http://www.cvi.com.br

Excellent

A CVI Refrigerantes é uma empresa da CVI (Companhia Vontobel de Investimentos) que atua no segmento de bebidas por meio da produção, comercialização e distribuição de produtos das linhas The Coca-Cola Company, Heineken e SABB. Fundada no dia 5 de dezembro de 1977, tem sua fábrica instalada em Santa Maria (RS), além de Centros de Distribuição em Passo Fundo e Santa Cruz do Sul e Cross Dockings (responsáveis exclusivamente pela distribuição de produtos) em Bagé e Sant´Ana do Livramento. Atualmente a empresa totaliza 23 mil metros de área construída e opera com quatro linhas (uma de envase para latas, duas de embalagens PET e uma de embalagens de vidro). Constituídas por modernos equipamentos de fabricação, elas têm capacidade de produzir 298,743 milhões de litros de bebidas por ano, as quais estão presentes diariamente na mesa de consumidores gaúchos das regiões Centro, Fronteira Oeste e Planalto Médio.

NAICS: 722
NAICS Definition:
Employees: 501-1,000
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Yanghe Distillery (江苏洋河酒厂股份有限公司)

18 Road, Yuhua Economic Zone 18 Nanjing, Jiangsu province 210000, CN
Last Update: 2025-06-05 (UTC)

Excellent

Between 900 and 1000
http://www.chinayanghe.com

Located in China’s capital of spirits—Suqian, Yanghe Distillery boasts total assets over RMB 35.4 billion. With more than 30,000 employees, we have opened 179 branch companies and offices across the country. Our center of domestic operations is based in China’s ancient capital, Nanjing. The group owns two subsidiary brands Yanghe and Shuanggou, both of which have over 1,300 years of history. Our three production bases—Yanghe, Shuanggou and Lai’an have a total area of over ten square kilometers, made us one of the largest and most powerful liquor producers in the country. After consecutively making the list of the top 500 China’s enterprises, we surged into the FT Global 500 list in 2013. Driven by powerful customer satisfaction and demand, in 2015, our sales income reached over RMB 15 billion, ranked No.2 in the nation. Moreover, with a total value of USD 2.0 billion, we also made the BrandZ listing of the top 100 most valuable China’s brands, and we were ranked 55th on Hurun's 2016 list of the 200 most valuable Chinese brands, achieving first place among all the listed brands from Jiangsu Province. In 2017, we were ranked 3th in the global top 50 spirits list, which were released by Brand Finance, a British leading independent brand valuation organization.

NAICS: 722
NAICS Definition: Food Services and Drinking Places
Employees: 10,001+
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/cvi-refrigerantes.jpeg
CVI Refrigerantes
ISO 27001
Not verified
SOC 2
Not verified
GDPR
No public badge
PCI DSS
No public badge
https://images.rankiteo.com/companyimages/yanghedistillery.jpeg
Yanghe Distillery (江苏洋河酒厂股份有限公司)
ISO 27001
Not verified
SOC 2
Not verified
GDPR
No public badge
PCI DSS
No public badge
Compliance Summary
CVI Refrigerantes
100%
Compliance Rate
0/4 Standards Verified
Yanghe Distillery (江苏洋河酒厂股份有限公司)
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Food and Beverage Services Industry Average (This Year)

No incidents recorded for CVI Refrigerantes in 2025.

Incidents vs Food and Beverage Services Industry Average (This Year)

No incidents recorded for Yanghe Distillery (江苏洋河酒厂股份有限公司) in 2025.

Incident History — CVI Refrigerantes (X = Date, Y = Severity)

CVI Refrigerantes cyber incidents detection timeline including parent company and subsidiaries

Incident History — Yanghe Distillery (江苏洋河酒厂股份有限公司) (X = Date, Y = Severity)

Yanghe Distillery (江苏洋河酒厂股份有限公司) cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/cvi-refrigerantes.jpeg
CVI Refrigerantes
Incidents

No Incident

https://images.rankiteo.com/companyimages/yanghedistillery.jpeg
Yanghe Distillery (江苏洋河酒厂股份有限公司)
Incidents

No Incident

FAQ

Both CVI Refrigerantes company and Yanghe Distillery (江苏洋河酒厂股份有限公司) company demonstrate a comparable AI risk posture, with strong governance and monitoring frameworks in place.

Historically, Yanghe Distillery (江苏洋河酒厂股份有限公司) company has disclosed a higher number of cyber incidents compared to CVI Refrigerantes company.

In the current year, Yanghe Distillery (江苏洋河酒厂股份有限公司) company and CVI Refrigerantes company have not reported any cyber incidents.

Neither Yanghe Distillery (江苏洋河酒厂股份有限公司) company nor CVI Refrigerantes company has reported experiencing a ransomware attack publicly.

Neither Yanghe Distillery (江苏洋河酒厂股份有限公司) company nor CVI Refrigerantes company has reported experiencing a data breach publicly.

Neither Yanghe Distillery (江苏洋河酒厂股份有限公司) company nor CVI Refrigerantes company has reported experiencing targeted cyberattacks publicly.

Neither CVI Refrigerantes company nor Yanghe Distillery (江苏洋河酒厂股份有限公司) company has reported experiencing or disclosing vulnerabilities publicly.

Neither CVI Refrigerantes company nor Yanghe Distillery (江苏洋河酒厂股份有限公司) company has publicly disclosed detailed information about the number of their subsidiaries.

Neither CVI Refrigerantes company nor Yanghe Distillery (江苏洋河酒厂股份有限公司) company has publicly disclosed the exact number of their employees.

Latest Global CVEs (Not Company-Specific)

Description

Volto is a ReactJS-based frontend for the Plone Content Management System. Versions 16.34.0 and below, 17.0.0 through 17.22.1, 18.0.0 through 18.27.1, and 19.0.0-alpha.1 through 19.0.0-alpha.5, an anonymous user could cause the NodeJS server part of Volto to quit with an error when visiting a specific URL. This issue is fixed in versions 16.34.1, 17.22.2, 18.27.2 and 19.0.0-alpha.6.

Published
Date
2025-10-02
Updated
Date
2025-10-02
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Traccar is an open source GPS tracking system. Default installs of Traccar on Windows between versions 6.1- 6.8.1 and non default installs between versions 5.8 - 6.0 are vulnerable to unauthenticated local file inclusion attacks which can lead to leakage of passwords or any file on the file system including the Traccar configuration file. Versions 5.8 - 6.0 are only vulnerable if <entry key='web.override'>./override</entry> is set in the configuration file. Versions 6.1 - 6.8.1 are vulnerable by default as the web override is enabled by default. The vulnerable code is removed in version 6.9.0.

Published
Date
2025-10-02
Updated
Date
2025-10-02
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Stalwart is a mail and collaboration server. Versions 0.13.3 and below contain an unbounded memory allocation vulnerability in the IMAP protocol parser which allows remote attackers to exhaust server memory, potentially triggering the system's out-of-memory (OOM) killer and causing a denial of service. The CommandParser implementation enforces size limits on its dynamic buffer in most parsing states, but several state handlers omit these validation checks. This issue is fixed in version 0.13.4. A workaround for this issue is to implement rate limiting and connection monitoring at the network level, however this does not provide complete protection.

Published
Date
2025-10-02
Updated
Date
2025-10-02
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References
Description

WeGIA is an open source web manager with a focus on charitable institutions. Versions 3.4.12 and below contain a Broken Access Control vulnerability, identified in the get_relatorios_socios.php endpoint. This vulnerability allows unauthenticated attackers to directly access sensitive personal and financial information of members without requiring authentication or authorization. This issue is fixed in version 3.5.0.

Published
Date
2025-10-02
Updated
Date
2025-10-02
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

WeGIA is an open source web manager with a focus on charitable institutions. Versions 3.4.12 and below contain an Open Redirect vulnerability, identified in the control.php endpoint, specifically in the nextPage parameter (metodo=listarUmnomeClasse=FuncionarioControle). This vulnerability allows attackers to redirect users to arbitrary external domains, enabling phishing campaigns, malicious payload distribution, or user credential theft. This issue is fixed in version 3.5.0.

Published
Date
2025-10-02
Updated
Date
2025-10-02
Risk Information
cvss4
Base: 4.8
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References