Comparison Overview

Design One

VS

IBM SevOne

Design One

451 Hungerford Dr., Rockville, MD, 20850, US
Last Update: 2025-11-26
View Profile
Between 750 and 799
http://www.design-one.com

Design One is a full service computer network solutions company providing secure Local Area Networks and Wide Area Networks, maintenance, tech support, and preventive services to the legal and business communities. We strive to find the best solution for each client at the most affordable price. Our senior staff has been with Design One for an average of 15 years, and we have more than 100 years of combined technical experience. We were one of the first companies in Washington, DC to offer computer networking services, and we’re still at it today.

NAICS: None
NAICS Definition:
Employees: 1
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

IBM SevOne

800 Boylston Street, Boston, MA, 02199, US
Last Update: 2025-11-27
Between 750 and 799
https://www.ibm.com/products/sevone-network-performance-management

Struggling to address the soaring complexities of modern network management? Network infrastructures built for digital transformation require monitoring solutions that can be just as dynamic, flexible, and scalable as the new environments. Designed for modern networks, IBM® SevOne helps you spot, address, and prevent network performance issues early with machine learning-powered analytics. With real-time, actionable insights; it helps proactively monitor multivendor networks across enterprise, communication, and managed service providers. Going beyond detection, IBM SevOne combines industry-leading expertise and advanced technologies to help your IT team act on what matters: improving network performance to provide an exceptional user experience.

NAICS: 51125
NAICS Definition: Software Publishers
Employees: 117
Subsidiaries: 15
12-month incidents
0
Known data breaches
3
Attack type number
3

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/design-one_3.jpeg
Design One
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/sevone-inc.jpeg
IBM SevOne
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Design One
100%
Compliance Rate
0/4 Standards Verified
IBM SevOne
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Computer Networking Products Industry Average (This Year)

No incidents recorded for Design One in 2025.

Incidents vs Computer Networking Products Industry Average (This Year)

No incidents recorded for IBM SevOne in 2025.

Incident History — Design One (X = Date, Y = Severity)

Design One cyber incidents detection timeline including parent company and subsidiaries

Incident History — IBM SevOne (X = Date, Y = Severity)

IBM SevOne cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/design-one_3.jpeg
Design One
Incidents

No Incident

https://images.rankiteo.com/companyimages/sevone-inc.jpeg
IBM SevOne
Incidents

Date Detected: 11/2025
Type:Vulnerability
Blog: Blog

Date Detected: 10/2025
Type:Vulnerability
Blog: Blog

Date Detected: 9/2025
Type:Breach
Attack Vector: Phishing (Email), Vendor Scams, Credential Theft, Image-Based Phishing, Social Engineering
Blog: Blog

FAQ

Design One company demonstrates a stronger AI Cybersecurity Score compared to IBM SevOne company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

IBM SevOne company has historically faced a number of disclosed cyber incidents, whereas Design One company has not reported any.

In the current year, IBM SevOne company has reported more cyber incidents than Design One company.

Neither IBM SevOne company nor Design One company has reported experiencing a ransomware attack publicly.

IBM SevOne company has disclosed at least one data breach, while Design One company has not reported such incidents publicly.

IBM SevOne company has reported targeted cyberattacks, while Design One company has not reported such incidents publicly.

IBM SevOne company has disclosed at least one vulnerability, while Design One company has not reported such incidents publicly.

Neither Design One nor IBM SevOne holds any compliance certifications.

Neither company holds any compliance certifications.

IBM SevOne company has more subsidiaries worldwide compared to Design One company.

IBM SevOne company employs more people globally than Design One company, reflecting its scale as a Computer Networking Products.

Neither Design One nor IBM SevOne holds SOC 2 Type 1 certification.

Neither Design One nor IBM SevOne holds SOC 2 Type 2 certification.

Neither Design One nor IBM SevOne holds ISO 27001 certification.

Neither Design One nor IBM SevOne holds PCI DSS certification.

Neither Design One nor IBM SevOne holds HIPAA certification.

Neither Design One nor IBM SevOne holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

ThingsBoard in versions prior to v4.2.1 allows an authenticated user to upload malicious SVG images via the "Image Gallery", leading to a Stored Cross-Site Scripting (XSS) vulnerability. The exploit can be triggered when any user accesses the public API endpoint of the malicious SVG images, or if the malicious images are embedded in an `iframe` element, during a widget creation, deployed to any page of the platform (e.g., dashboards), and accessed during normal operations. The vulnerability resides in the `ImageController`, which fails to restrict the execution of JavaScript code when an image is loaded by the user's browser. This vulnerability can lead to the execution of malicious code in the context of other users' sessions, potentially compromising their accounts and allowing unauthorized actions.

Published
Date
2025-11-27
Updated
Date
2025-11-27
Risk Information
cvss4
Base: 6.2
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:H/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to to verify that the token used during the code exchange originates from the same authentication flow, which allows an authenticated user to perform account takeover via a specially crafted email address used when switching authentication methods and sending a request to the /users/login/sso/code-exchange endpoint. The vulnerability requires ExperimentalEnableAuthenticationTransfer to be enabled (default: enabled) and RequireEmailVerification to be disabled (default: disabled).

Published
Date
2025-11-27
Updated
Date
2025-11-27
Risk Information
cvss3
Base: 9.9
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
References
Description

Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to sanitize team email addresses to be visible only to Team Admins, which allows any authenticated user to view team email addresses via the GET /api/v4/channels/{channel_id}/common_teams endpoint

Published
Date
2025-11-27
Updated
Date
2025-11-27
Risk Information
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
References
Description

Exposure of email service credentials to users without administrative rights in Devolutions Server.This issue affects Devolutions Server: before 2025.2.21, before 2025.3.9.

Published
Date
2025-11-27
Updated
Date
2025-11-27
References
Description

Exposure of credentials in unintended requests in Devolutions Server.This issue affects Server: through 2025.2.20, through 2025.3.8.

Published
Date
2025-11-27
Updated
Date
2025-11-27
References