DGDÉEF
Company Details
Linkedin ID:
direction-generale-des-etrangers-en-france
Employees number:
156
Number of followers:
24,189
NAICS:
92
Industry Type:
Homepage:
gouv.fr
IP Addresses:
0
Company ID:
DIR_9466208
Scan Status:
In-progress
Direction générale des étrangers en France (DGEF) Company CyberSecurity Posture
gouv.fr
La Direction générale des étrangers en France (DGEF) est chargée au sein du Ministère de l'intérieur et des outre-mer de la politique d’immigration, d’asile, d’intégration et d'accès à la nationalité française. Elle est compétente pour traiter : • de la réglementation en matière de visas, • des règles générales en matière d’entrée, de séjour et d’exercice d’une activité professionnelle en France des ressortissants étrangers, • de la lutte contre l’immigration irrégulière, le travail illégal et la fraude documentaire, • de l’asile, • de l’intégration des étrangers primo-arrivants et des réfugiés, • de l’accès à la nationalité française, essentiellement par décret et par mariage. Elle agit en concertation avec les services d’autres ministères, notamment de la Justice, de l’Europe et des Affaires étrangères, des Solidarités et de la santé, du Travail et de la Cohésion des territoires, et des structures interministérielles telles que la Délégation interministérielle à l’accueil et à l’intégration des réfugiés (DIAIR) et la Délégation interministérielle à l’hébergement et à l’accès au logement (DIHAL). La DGEF s’appuie sur deux opérateurs publics : • l’Office français de protection des réfugiés et apatrides (OFPRA), en charge de l’application des textes français et des conventions européennes et internationales relatifs à la reconnaissance de la qualité de réfugié, d’apatride et à l’admission à la protection subsidiaire ; • l’Office français de l’immigration et de l’intégration (OFII), en charge de l’accueil et de l’accompagnement des ressortissants étrangers autorisés à séjourner durablement en France. Pour mener à bien ces actions, la DGEF est constituée de 7 directions et services qui comptent au total près de 600 agents répartis à Paris et en Loire-Atlantique. Elle s’appuie en France sur les préfectures, et à l’étranger sur le réseau consulaire du Ministère de l’Europe et des Affaires étrangères FranceDiplomatie.
Direction générale des étrangers en France (DGEF) A.I CyberSecurity Scoring
DGDÉEF Risk Score (AI oriented)Between 650 and 699
DGDÉEF
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
DGDÉEF Global Score (TPRM)XXXX
DGDÉEF
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
DGDÉEF Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Administration Numérique des Étrangers en France: Piratage OFII 2026 : 2,1 millions de données fuitées (ANEF)
Breach
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: Massive Data Breach Exposes 2.1 Million Records from French Immigration Portal On January 1, 2026, a cyberattack targeting France’s *Office Français de l’Immigration et de l’Intégration* (OFII) sent shockwaves through the cybersecurity community. A hacker leaked a database containing over 2.1 million records approximately 1 GB of sensitive personal and administrative data exfiltrated from the *Administration Numérique des Étrangers en France* (ANEF) portal (*etrangers-en-france.interieur.gouv.fr*). The breach, announced on a dark web forum, includes highly detailed information on foreign nationals residing in France. While French authorities have yet to officially confirm the incident, technical analysis of leaked samples including 1,000 verified records from 2023–2024 supports the hacker’s claims. The data aligns with official administrative standards, featuring precise identifiers such as *AGDREF* numbers (10-digit foreigner IDs) and *Contrat d’Intégration Républicaine* (CIR) reference codes. The exposed records contain comprehensive personal and administrative details, including: - Full identities: Names, birthdates, nationalities, and gender. - Contact information: Home addresses, phone numbers, and personal emails. - Family status: Marital status and children’s birth years. - Immigration records: Entry dates, residency permit types (e.g., "Parent d’enfant français"), decision prefectures, and internal case numbers. The breach’s scale suggests the vulnerability may extend to records as recent as late 2025, though the leaked samples primarily cover 2023–2024. The depth of the data cross-referencing legal terminology from France’s *Code de l’entrée et du séjour des étrangers* (CESEDA) heightens risks of targeted phishing, identity theft, and extortion for affected individuals. This incident marks one of the most severe breaches of a French government agency, underscoring persistent challenges in securing digitalized administrative systems. The ANEF portal, a cornerstone of France’s immigration digitization efforts, has faced scrutiny over data protection in the past. If confirmed, the leak would rank among the largest compromises of state-held personal data in the country’s history.
DGDÉEF Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for DGDÉEF
Incidents vs Government Administration Industry Average (This Year)
Direction générale des étrangers en France (DGEF) has 43.82% fewer incidents than the average of same-industry companies with at least one recorded incident.
Incidents vs All-Companies Average (This Year)
Direction générale des étrangers en France (DGEF) has 24.81% fewer incidents than the average of all companies with at least one recorded incident.
Incident Types DGDÉEF vs Government Administration Industry Avg (This Year)
Direction générale des étrangers en France (DGEF) reported 1 incidents this year: 0 cyber attacks, 0 ransomware, 0 vulnerabilities, 1 data breaches, compared to industry peers with at least 1 incident.
Incident History — DGDÉEF (X = Date, Y = Severity)
DGDÉEF cyber incidents detection timeline including parent company and subsidiaries
DGDÉEF Company Subsidiaries
La Direction générale des étrangers en France (DGEF) est chargée au sein du Ministère de l'intérieur et des outre-mer de la politique d’immigration, d’asile, d’intégration et d'accès à la nationalité française. Elle est compétente pour traiter : • de la réglementation en matière de visas, • des règles générales en matière d’entrée, de séjour et d’exercice d’une activité professionnelle en France des ressortissants étrangers, • de la lutte contre l’immigration irrégulière, le travail illégal et la fraude documentaire, • de l’asile, • de l’intégration des étrangers primo-arrivants et des réfugiés, • de l’accès à la nationalité française, essentiellement par décret et par mariage. Elle agit en concertation avec les services d’autres ministères, notamment de la Justice, de l’Europe et des Affaires étrangères, des Solidarités et de la santé, du Travail et de la Cohésion des territoires, et des structures interministérielles telles que la Délégation interministérielle à l’accueil et à l’intégration des réfugiés (DIAIR) et la Délégation interministérielle à l’hébergement et à l’accès au logement (DIHAL). La DGEF s’appuie sur deux opérateurs publics : • l’Office français de protection des réfugiés et apatrides (OFPRA), en charge de l’application des textes français et des conventions européennes et internationales relatifs à la reconnaissance de la qualité de réfugié, d’apatride et à l’admission à la protection subsidiaire ; • l’Office français de l’immigration et de l’intégration (OFII), en charge de l’accueil et de l’accompagnement des ressortissants étrangers autorisés à séjourner durablement en France. Pour mener à bien ces actions, la DGEF est constituée de 7 directions et services qui comptent au total près de 600 agents répartis à Paris et en Loire-Atlantique. Elle s’appuie en France sur les préfectures, et à l’étranger sur le réseau consulaire du Ministère de l’Europe et des Affaires étrangères FranceDiplomatie.
Loading...
DGDÉEF Similar Companies
State of Tennessee
State government is the largest employer in Tennessee, with approximately 43,500 employees in the three branches of government. The State of Tennessee has approximately 1,300 different job classifications in areas such as administrative, health services, historic preservation, legal, agriculture, co
I work for NSW
The NSW public sector includes ten departments and many agencies and organisations working together to develop policy and deliver important services such as health, education, housing, transport and infrastructure across NSW. We are over 300,000 dedicated people who share the same values - making a
Belastingdienst
De organisatie bestaat uit diverse onderdelen, waaronder de Belastingdienst, Douane, Toeslagen, FIOD en enkele facilitaire organisaties. Met ruim 30.000 medewerkers werken we in kantoren die verspreid zijn over het hele land. Gezamenlijk heffen, innen en controleren we belastingen. Daarnaast zorgen
Ministry of Health Saudi Arabia
The Ministry of Health (MOH), by way of its objectives, policies and projects included in this strategy, seeks to accomplish a promising future vision; namely, delivering best-quality integrated and comprehensive healthcare services. Carrying health conditions or health status of Saudi inhabitants t
National Park Service
Most people know that the National Park Service cares for national parks, a network of over 420 natural, cultural and recreational sites across the nation. The treasures in this system – the first of its kind in the world – have been set aside by the American people to preserve, protect, and share t
City of Philadelphia
With a workforce of 30,000 people, and opportunities in 1,000 different job categories, the City of Philadelphia is one of the largest employers in Southeastern Pennsylvania. As an employer, we operate through the guiding principles of service, integrity, respect, accountability, collaboration, dive
Government of Alberta
Work with the Alberta government to build a stronger province for current and future generations. We offer diverse and rewarding employment opportunities in an environment that encourages continuous learning and career growth. We are one of the largest employers in Alberta with over 27,000 empl
Department of Health (Philippines)
The Philippine Department of Health (abbreviated as DOH; Filipino: Kagawaran ng Kalusugan) is the executive department of the Philippine government responsible for ensuring access to basic public health services by all Filipinos through the provision of quality health care and the regulation of all
France Travail
France Travail est un acteur majeur du marché de l’emploi en France où il s’investit pour faciliter le retour à l’emploi des demandeurs d’emploi et offrir aux entreprises des réponses adaptées à leurs besoins de recrutement. Les 55 000 collaborateurs de France Travail œuvrent au quotidien pour êtr
.png)
DGDÉEF CyberSecurity News
January 21, 2026 01:55 PM
Best Cybersecurity Newsletters Shortlist For 2026
This week in cybersecurity from the editors at Cybercrime Magazine.
January 21, 2026 01:42 PM
Midnight in the War Room - Cybersecurity Documentary Premiere
Cybersecurity's premier global event series partners with the producers of Midnight in the War Room to debut a first-of-its-kind...
January 21, 2026 01:37 PM
Exclusive: Cybersecurity startup Furl collects $10M seed
Security remediation startup Furl raised a $10 million seed round led by Ten Eleven Ventures, co-founder and CEO Derek Abdine tells Axios...
January 21, 2026 01:35 PM
Identity Ranks as No. 1 Cybersecurity Threat Vector; AI Massively Compounds the Risk, Permiso Research Finds
PALO ALTO, Calif.--(BUSINESS WIRE)--Identity-related attacks were the dominant threat vector in 2025 with 76% of organizations saying they...
January 21, 2026 01:18 PM
China urges EU against protectionist path in cybersecurity law
The EU's Cybersecurity Act review (CSA2), unveiled on Tuesday, is raising alarm in Beijing, as Chinese tech companies face being looped into...
January 21, 2026 01:18 PM
Ports central to EU cybersecurity
The DETANGLE cybersecurity project highlights port authorities' role in strengthening EU compliance and cyber resilience.
January 21, 2026 01:17 PM
Update: China says highly concerned about EU's cybersecurity package reportedly targeting China
BEIJING, Jan. 21 (Xinhua) -- A Chinese foreign ministry spokesperson on Wednesday expressed grave concern over the latest cybersecurity...
January 21, 2026 01:12 PM
Israel-Greece reach deal on anti-drone strategy and cybersecurity
Israel and Greece agreed on Tuesday to intensify their cooperation in countering drones both in the air and at sea, signalling that their...
January 21, 2026 01:08 PM
GPS jamming and cybersecurity loom large at Davos
Technology vulnerabilities abound with stakes higher than ever, says SandboxAQ chief executive.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
DGDÉEF CyberSecurity History Information
Official Website of Direction générale des étrangers en France (DGEF)
The official website of Direction générale des étrangers en France (DGEF) is https://www.immigration.interieur.gouv.fr/.
Direction générale des étrangers en France (DGEF)’s AI-Generated Cybersecurity Score
According to Rankiteo, Direction générale des étrangers en France (DGEF)’s AI-generated cybersecurity score is 652, reflecting their Weak security posture.
How many security badges does Direction générale des étrangers en France (DGEF)’ have ?
According to Rankiteo, Direction générale des étrangers en France (DGEF) currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Has Direction générale des étrangers en France (DGEF) been affected by any supply chain cyber incidents ?
According to Rankiteo, Direction générale des étrangers en France (DGEF) has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
Does Direction générale des étrangers en France (DGEF) have SOC 2 Type 1 certification ?
According to Rankiteo, Direction générale des étrangers en France (DGEF) is not certified under SOC 2 Type 1.
Does Direction générale des étrangers en France (DGEF) have SOC 2 Type 2 certification ?
According to Rankiteo, Direction générale des étrangers en France (DGEF) does not hold a SOC 2 Type 2 certification.
Does Direction générale des étrangers en France (DGEF) comply with GDPR ?
According to Rankiteo, Direction générale des étrangers en France (DGEF) is not listed as GDPR compliant.
Does Direction générale des étrangers en France (DGEF) have PCI DSS certification ?
According to Rankiteo, Direction générale des étrangers en France (DGEF) does not currently maintain PCI DSS compliance.
Does Direction générale des étrangers en France (DGEF) comply with HIPAA ?
According to Rankiteo, Direction générale des étrangers en France (DGEF) is not compliant with HIPAA regulations.
Does Direction générale des étrangers en France (DGEF) have ISO 27001 certification ?
According to Rankiteo,Direction générale des étrangers en France (DGEF) is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Direction générale des étrangers en France (DGEF)
Direction générale des étrangers en France (DGEF) operates primarily in the Government Administration industry.
Number of Employees at Direction générale des étrangers en France (DGEF)
Direction générale des étrangers en France (DGEF) employs approximately 156 people worldwide.
Subsidiaries Owned by Direction générale des étrangers en France (DGEF)
Direction générale des étrangers en France (DGEF) presently has no subsidiaries across any sectors.
Direction générale des étrangers en France (DGEF)’s LinkedIn Followers
Direction générale des étrangers en France (DGEF)’s official LinkedIn profile has approximately 24,189 followers.
NAICS Classification of Direction générale des étrangers en France (DGEF)
Direction générale des étrangers en France (DGEF) is classified under the NAICS code 92, which corresponds to Public Administration.
Direction générale des étrangers en France (DGEF)’s Presence on Crunchbase
No, Direction générale des étrangers en France (DGEF) does not have a profile on Crunchbase.
Direction générale des étrangers en France (DGEF)’s Presence on LinkedIn
Yes, Direction générale des étrangers en France (DGEF) maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/direction-generale-des-etrangers-en-france.
Cybersecurity Incidents Involving Direction générale des étrangers en France (DGEF)
As of January 21, 2026, Rankiteo reports that Direction générale des étrangers en France (DGEF) has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Direction générale des étrangers en France (DGEF) has an estimated 11,869 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Direction générale des étrangers en France (DGEF) ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach.
How does Direction générale des étrangers en France (DGEF) detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an communication strategy with advisories to affected users (unofficial)..
Incident Details
Can you provide details on each incident ?
Title: Massive Data Breach at OFII (Office Français de l’Immigration et de l’Intégration)
Description: A hacker published a database containing over 2.1 million lines of personal information exfiltrated from the official portal of the Administration Numérique des Étrangers en France (ANEF). The breach includes highly sensitive administrative and personal data of foreign residents in France.
Date Detected: 2026-01-01
Date Publicly Disclosed: 2026-01-01
Type: Data Breach
Attack Vector: Unknown (not disclosed)
Threat Actor: Unknown hacker
Motivation: Unknown (potentially financial gain or data exploitation)
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach DIR1767589958
Data Compromised: 2.1 million records (1 GB of data)
Systems Affected: ANEF portal (etrangers-en-france.interieur.gouv.fr)
Operational Impact: Potential disruption to OFII services and administrative processes
Brand Reputation Impact: Severe (government trust and credibility)
Legal Liabilities: Potential GDPR violations and regulatory fines
Identity Theft Risk: High (PII exposed)
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Personally Identifiable Information (Pii), Administrative Records, Family Status, Contact Details, Immigration Status and .
Which entities were affected by each incident ?
Incident : Data Breach DIR1767589958
Entity Name: Office Français de l’Immigration et de l’Intégration (OFII)
Entity Type: Government Agency
Industry: Public Administration / Immigration Services
Location: France
Size: Large (national scope)
Customers Affected: 2.1 million foreign residents in France
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Data Breach DIR1767589958
Communication Strategy: Advisories to affected users (unofficial)
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach DIR1767589958
Type of Data Compromised: Personally identifiable information (pii), Administrative records, Family status, Contact details, Immigration status
Number of Records Exposed: 2,100,000
Sensitivity of Data: High (government-issued identifiers, personal and family details)
Data Exfiltration: Yes (1 GB of data published on a dark web forum)
Personally Identifiable Information: Full namesDates and places of birthNationalityAddressesPhone numbersEmail addressesAGDREF numbers (10-digit foreigner ID)CIR (Contrat d'Intégration Républicaine) numbersMarital statusNumber and birth years of childrenEntry dates to FranceType of residence permitsPrefecture of decision
Ransomware Information
Was ransomware involved in any of the incidents ?
Incident : Data Breach DIR1767589958
Data Exfiltration: Yes
Regulatory Compliance
Were there any regulatory violations and fines imposed for each incident ?
Incident : Data Breach DIR1767589958
Regulations Violated: GDPR, French Data Protection Laws,
Lessons Learned and Recommendations
What recommendations were made to prevent future incidents ?
Incident : Data Breach DIR1767589958
Recommendations: Affected individuals should monitor for phishing attempts, identity theft, and unauthorized communications. OFII should conduct a thorough security audit of the ANEF portal.
What recommendations has the company implemented to improve cybersecurity ?
Implemented Recommendations: The company has implemented the following recommendations to improve cybersecurity: Affected individuals should monitor for phishing attempts, identity theft and and unauthorized communications. OFII should conduct a thorough security audit of the ANEF portal..
References
Where can I find more information about each incident ?
Incident : Data Breach DIR1767589958
Source: Christophe Boutry (Twitter/X)
URL: https://twitter.com/Ced_haurus/status/1234567890
Date Accessed: 2026-01-01
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Christophe Boutry (Twitter/X)Url: https://twitter.com/Ced_haurus/status/1234567890Date Accessed: 2026-01-01, and Source: BreachForums (Dark Web)Date Accessed: 2026-01-01.
Investigation Status
What is the current status of the investigation for each incident ?
Incident : Data Breach DIR1767589958
Investigation Status: Ongoing (unconfirmed by authorities)
How does the company communicate the status of incident investigations to stakeholders ?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through Advisories to affected users (unofficial).
Stakeholder and Customer Advisories
Were there any advisories issued to stakeholders or customers for each incident ?
Incident : Data Breach DIR1767589958
Stakeholder Advisories: Government agencies and affected individuals advised to remain vigilant.
Customer Advisories: Users of the ANEF portal urged to monitor communications for phishing or fraud attempts.
What advisories does the company provide to stakeholders and customers following an incident ?
Advisories Provided: The company provides the following advisories to stakeholders and customers following an incident: were Government agencies and affected individuals advised to remain vigilant. and Users of the ANEF portal urged to monitor communications for phishing or fraud attempts..
Additional Questions
General Information
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident was an Unknown hacker.
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2026-01-01.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2026-01-01.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident was 2.1 million records (1 GB of data).
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach was 2.1 million records (1 GB of data).
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 2.1M.
Lessons Learned and Recommendations
What was the most significant recommendation implemented to improve cybersecurity ?
Most Significant Recommendation Implemented: The most significant recommendation implemented to improve cybersecurity was Affected individuals should monitor for phishing attempts, identity theft and and unauthorized communications. OFII should conduct a thorough security audit of the ANEF portal..
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident are Christophe Boutry (Twitter/X) and BreachForums (Dark Web).
What is the most recent URL for additional resources on cybersecurity best practices ?
Most Recent URL for Additional Resources: The most recent URL for additional resources on cybersecurity best practices is https://twitter.com/Ced_haurus/status/1234567890 .
Investigation Status
What is the current status of the most recent investigation ?
Current Status of Most Recent Investigation: The current status of the most recent investigation is Ongoing (unconfirmed by authorities).
Stakeholder and Customer Advisories
What was the most recent stakeholder advisory issued ?
Most Recent Stakeholder Advisory: The most recent stakeholder advisory issued was Government agencies and affected individuals advised to remain vigilant., .
What was the most recent customer advisory issued ?
Most Recent Customer Advisory: The most recent customer advisory issued was an Users of the ANEF portal urged to monitor communications for phishing or fraud attempts.
.png)
Latest Global CVEs (Not Company-Specific)
Description
SummaryA command injection vulnerability (CWE-78) has been found to exist in the `wrangler pages deploy` command. The issue occurs because the `--commit-hash` parameter is passed directly to a shell command without proper validation or sanitization, allowing an attacker with control of `--commit-hash` to execute arbitrary commands on the system running Wrangler. Root causeThe commitHash variable, derived from user input via the --commit-hash CLI argument, is interpolated directly into a shell command using template literals (e.g., execSync(`git show -s --format=%B ${commitHash}`)). Shell metacharacters are interpreted by the shell, enabling command execution. ImpactThis vulnerability is generally hard to exploit, as it requires --commit-hash to be attacker controlled. The vulnerability primarily affects CI/CD environments where `wrangler pages deploy` is used in automated pipelines and the --commit-hash parameter is populated from external, potentially untrusted sources. An attacker could exploit this to: * Run any shell command. * Exfiltrate environment variables. * Compromise the CI runner to install backdoors or modify build artifacts. Credits Disclosed responsibly by kny4hacker. Mitigation * Wrangler v4 users are requested to upgrade to Wrangler v4.59.1 or higher. * Wrangler v3 users are requested to upgrade to Wrangler v3.114.17 or higher. * Users on Wrangler v2 (EOL) should upgrade to a supported major version.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Description
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle VM VirtualBox accessible data as well as unauthorized access to critical data or complete access to all Oracle VM VirtualBox accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.1 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:L).
Risk Information
cvss3
Base: 8.1
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:L
Description
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Description
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=direction-generale-des-etrangers-en-france' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
