Comparison Overview

DFS Aviation Services GmbH

VS

NASA - National Aeronautics and Space Administration

DFS Aviation Services GmbH

Heinrich-Hertz-Straße 26, Langen (Hessen), Hessen, DE, 63225
Last Update: 2025-12-13
View Profile
Between 700 and 749
http://www.dfs-as.aero

DFS Aviation Services is a subsidiary of DFS Deutsche Flugsicherung, the German air navigation service provider (ANSP). DFS is responsible for one of the most complex airspaces in the world and handles around 3 million flights annually. The core business of DFS Aviation Services consists of air navigation services at regional airports as a certified ANSP in Germany. The combination of technical and operational expertise allows us to provide customers with tailor-made solutions. The extensive portfolio comprises products and services in ATM. These include: - Air traffic services (ATS) & Apron - Consultancy - Aeronautical Data, Engineering & Systems - Aviation Training Services Through its UK subsidiary, Air Navigation Solutions Ltd., the company is also responsible for the provision of air traffic control at Edinburgh Airport. In Asia, DFS Aviation Services maintains a branch office in Singapore for contact on-site. Since 2019, the subsidiary DFS Aviation Services Bahrain Co.W.L.L. is responsible for the provision of operational and administrative personnel in Bahrain and supports the Bahrain Ministry of Transportation and Telecommunication. In South America, DAS has a branch office in Lima. DFS Aviation Services additionally offers turnkey remote tower solutions via its Joint Venture FREQUENTIS DFS AEROSENSE.

NAICS: 3364
NAICS Definition: Aerospace Product and Parts Manufacturing
Employees: 196
Subsidiaries: 0
12-month incidents
1
Known data breaches
0
Attack type number
1
View Profile

NASA - National Aeronautics and Space Administration

300 E Street SW, Washington, DC, US, 20546
Last Update: 2025-12-09
Between 750 and 799
http://www.nasa.gov

For more than 60 years, NASA has been breaking barriers to achieve the seemingly impossible—from walking on the Moon to pushing the boundaries of human spaceflight farther than ever before. We work in space and around the world in laboratories and wind tunnels, on airfields and in control rooms to explore some of life’s fundamental mysteries: What’s out there in space? How do we get there? And what can we learn that will make life better here on Earth? We are passionate professionals united by a common purpose: to pioneer the future in space exploration, scientific discovery and aeronautics research. Today, we continue NASA’s legacy of excellence and innovation through an unprecedented array of missions. We are developing the most advanced rockets and spacecraft ever designed, studying the Earth for answers to critical challenges facing our planet, improving the air transportation experience, and so much more. Join us as we reach for new heights and reveal the unknown for the benefit of humanity.

NAICS: 3364
NAICS Definition: Aerospace Product and Parts Manufacturing
Employees: 46,373
Subsidiaries: 7
12-month incidents
2
Known data breaches
1
Attack type number
3

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/dfs-aviation-services.jpeg
DFS Aviation Services GmbH
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/nasa.jpeg
NASA - National Aeronautics and Space Administration
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
DFS Aviation Services GmbH
100%
Compliance Rate
0/4 Standards Verified
NASA - National Aeronautics and Space Administration
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Aviation and Aerospace Component Manufacturing Industry Average (This Year)

DFS Aviation Services GmbH has 29.87% more incidents than the average of same-industry companies with at least one recorded incident.

Incidents vs Aviation and Aerospace Component Manufacturing Industry Average (This Year)

NASA - National Aeronautics and Space Administration has 159.74% more incidents than the average of same-industry companies with at least one recorded incident.

Incident History — DFS Aviation Services GmbH (X = Date, Y = Severity)

DFS Aviation Services GmbH cyber incidents detection timeline including parent company and subsidiaries

Incident History — NASA - National Aeronautics and Space Administration (X = Date, Y = Severity)

NASA - National Aeronautics and Space Administration cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/dfs-aviation-services.jpeg
DFS Aviation Services GmbH
Incidents

Date Detected: 12/2025
Type:Cyber Attack
Motivation: Influence election, Destabilize democratic institutions, Divide society
Blog: Blog
https://images.rankiteo.com/companyimages/nasa.jpeg
NASA - National Aeronautics and Space Administration
Incidents

Date Detected: 6/2025
Type:Breach
Blog: Blog

Date Detected: 5/2025
Type:Vulnerability
Attack Vector: Exploitation of vulnerabilities in software
Motivation: To compromise computer systems at NASA and other institutions using the vulnerable software
Blog: Blog

Date Detected: 6/1999
Type:Cyber Attack
Attack Vector: Unauthorized Access
Blog: Blog

FAQ

NASA - National Aeronautics and Space Administration company demonstrates a stronger AI Cybersecurity Score compared to DFS Aviation Services GmbH company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

NASA - National Aeronautics and Space Administration company has faced a higher number of disclosed cyber incidents historically compared to DFS Aviation Services GmbH company.

In the current year, NASA - National Aeronautics and Space Administration company has reported more cyber incidents than DFS Aviation Services GmbH company.

Neither NASA - National Aeronautics and Space Administration company nor DFS Aviation Services GmbH company has reported experiencing a ransomware attack publicly.

NASA - National Aeronautics and Space Administration company has disclosed at least one data breach, while DFS Aviation Services GmbH company has not reported such incidents publicly.

Both NASA - National Aeronautics and Space Administration company and DFS Aviation Services GmbH company have reported experiencing targeted cyberattacks.

NASA - National Aeronautics and Space Administration company has disclosed at least one vulnerability, while DFS Aviation Services GmbH company has not reported such incidents publicly.

Neither DFS Aviation Services GmbH nor NASA - National Aeronautics and Space Administration holds any compliance certifications.

Neither company holds any compliance certifications.

NASA - National Aeronautics and Space Administration company has more subsidiaries worldwide compared to DFS Aviation Services GmbH company.

NASA - National Aeronautics and Space Administration company employs more people globally than DFS Aviation Services GmbH company, reflecting its scale as a Aviation and Aerospace Component Manufacturing.

Neither DFS Aviation Services GmbH nor NASA - National Aeronautics and Space Administration holds SOC 2 Type 1 certification.

Neither DFS Aviation Services GmbH nor NASA - National Aeronautics and Space Administration holds SOC 2 Type 2 certification.

Neither DFS Aviation Services GmbH nor NASA - National Aeronautics and Space Administration holds ISO 27001 certification.

Neither DFS Aviation Services GmbH nor NASA - National Aeronautics and Space Administration holds PCI DSS certification.

Neither DFS Aviation Services GmbH nor NASA - National Aeronautics and Space Administration holds HIPAA certification.

Neither DFS Aviation Services GmbH nor NASA - National Aeronautics and Space Administration holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

NXLog Agent before 6.11 can load a file specified by the OPENSSL_CONF environment variable.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 8.1
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
References
Description

uriparser through 0.9.9 allows unbounded recursion and stack consumption, as demonstrated by ParseMustBeSegmentNzNc with large input containing many commas.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 2.9
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
References
Description

A vulnerability was detected in Mayan EDMS up to 4.10.1. The affected element is an unknown function of the file /authentication/. The manipulation results in cross site scripting. The attack may be performed from remote. The exploit is now public and may be used. Upgrading to version 4.10.2 is sufficient to fix this issue. You should upgrade the affected component. The vendor confirms that this is "[f]ixed in version 4.10.2". Furthermore, that "[b]ackports for older versions in process and will be out as soon as their respective CI pipelines complete."

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss2
Base: 5.0
Severity: LOW
AV:N/AC:L/Au:N/C:N/I:P/A:N
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

MJML through 4.18.0 allows mj-include directory traversal to test file existence and (in the type="css" case) read files. NOTE: this issue exists because of an incomplete fix for CVE-2020-12827.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 4.5
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:L
References
Description

A half-blind Server Side Request Forgery (SSRF) vulnerability exists in kube-controller-manager when using the in-tree Portworx StorageClass. This vulnerability allows authorized users to leak arbitrary information from unprotected endpoints in the control plane’s host network (including link-local or loopback services).

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 5.8
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
References