Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download

Comparison Overview

ErdemirErdemir
VS
ValeVale
Erdemir

Erdemir

Uzunkum No:7 Kdz. Ereğli 67330 ZONGULDAK, Zonguldak, Ereğli, 67330, TR

Last Update: 12/03/2026

View Profile
Between 750 and 799
http://www.erdemir.com.tr
772/1000Fair

Erdemir, the main company of the OYAK Mining Metallurgy and one of the most valuable industrial assets of Turkey, was established in 1960 under a special law, in order to be the first domestic producer of flat steel, which the Turkish industry necessitates at that time....

NAICS:212
NAICS Definition:N/A
Employees:2,134
Subsidiaries:29
12-month incidents
0
Known data breaches
0
Attack type number
0
Vale

Vale

Praia de Botafogo, 186, Salas 501 a 1901 , Rio de Janeiro, Rio de Janeiro, BR, 22250-145

Last Update: 05/04/2026

View Profile
Between 800 and 849
http://www.vale.com
821/1000Good

We are a global mining company producing iron ore, pellets, and nickel, and we are committed to becoming one of the safest, most trustworthy mining company in the world. With a workforce of 120,000 employees, we work every day to transform natural resources into prosper...

NAICS:212
NAICS Definition:Mining (except Oil and Gas)
Employees:68,959
Subsidiaries:3
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Ranges Comparison

Based On Specific Ai Models Category
Erdemir

Erdemir

-
ISO 27001Not verified
ISO 27001
-
SOC2 Type 1Not verified
SOC2 Type 1
-
SOC2 Type 2Not verified
SOC2 Type 2
-
GDPRNot verified
GDPR
-
PCI DSSNot verified
PCI DSS
-
HIPAANot verified
HIPAA
Vale

Vale

-
ISO 27001Not verified
ISO 27001
-
SOC2 Type 1Not verified
SOC2 Type 1
-
SOC2 Type 2Not verified
SOC2 Type 2
-
GDPRNot verified
GDPR
-
PCI DSSNot verified
PCI DSS
-
HIPAANot verified
HIPAA

Benchmark & Cyber Underwriting Signals

Incidents vs Mining Industry Avg (This Year)

No incidents recorded for Erdemir in 2026.

Incidents

Incidents vs Mining Industry Avg (This Year)

No incidents recorded for Vale in 2026.

Incidents

Incident History - Erdemir (X = Date, Y = Severity)

Erdemir cyber incidents detection timeline including parent company and subsidiaries.

No timeline data available
R - Ransomware
C - Cyber Attack
D - Data Breach
V - Vulnerability

Incident History - Vale (X = Date, Y = Severity)

Vale cyber incidents detection timeline including parent company and subsidiaries.

No timeline data available
R - Ransomware
C - Cyber Attack
D - Data Breach
V - Vulnerability

Notable Incidents

Last Cyber / HR Incidents / Global...
Erdemir

Erdemir

Incidents
No explicit notable incidents reported.
Vale

Vale

Incidents
No explicit notable incidents reported.

FAQ

Between Erdemir company and Vale company, which one has the best AI Cybersecurity Score ?
Between Erdemir company and Vale company, which one has experienced more cyber incidents in the past ?
Between Erdemir company and Vale company, which one has experienced more cyber incidents this year ?
Between Erdemir company and Vale company, which one has experienced at least one ransomware attack ?
Between Erdemir company and Vale company, which one has experienced at least one data breach ?
Between Erdemir company and Vale company, which one has experienced at least one targeted cyberattack ?
Between Erdemir company and Vale company, which one has experienced at least one vulnerability ?
Between Erdemir company and Vale company, which one holds the most compliance certifications ?
Between Erdemir company and Vale company, which one holds the fewest compliance certifications ?
Between Erdemir company and Vale company, which one has the most subsidiaries ?
Between Erdemir company and Vale company, which one has the largest number of employees ?
Between Erdemir and Vale, which company holds both SOC 2 Type 1 certifications ?
Between Erdemir and Vale, which company holds both SOC 2 Type 2 certifications ?
Which company is ISO 27001 certified - Erdemir or Vale ?
Which company is PCI DSS compliant - Erdemir or Vale ?
Between Erdemir and Vale, which company complies with HIPAA regulations for healthcare data ?
Between Erdemir and Vale, which company complies with GDPR requirements ?

Latest Global CVEs

CVE-2026-56414
SUMMARY

A vulnerability exists in H.View IP cameras certificate-related upload interfaces allow authenticated users to store arbitrary file content to fixed, persistent filesystem locations without validating file type, structure, or size. This design omission enables the placement of unexpected or malformed data in locations intended for trusted certificate material, which could affect system integrity or behavior even after reboot.

PUBLISHED
Date2026-06-26
UPDATED
Date2026-06-26
RISK INFORMATION (Score: 7.2)
CVSS3
Base Score: 7.2
Complexity: LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
CVSS4
Base Score: 8.6
Complexity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
IMPACT SCORE
5.9
EXPLOITABILITY
1.2
REFERENCES
CVE-2026-55975
SUMMARY

A vulnerability exists in H.View IP cameras that could allow an authenticated user to supply unsanitized XML fields to the device's certificate generation interface, which are incorporated into a backend certificate creation command without proper input validation. This may allow for command execution with elevated privileges during certificate generation.

PUBLISHED
Date2026-06-26
UPDATED
Date2026-06-26
RISK INFORMATION (Score: 7.2)
CVSS3
Base Score: 7.2
Complexity: LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
CVSS4
Base Score: 8.6
Complexity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
IMPACT SCORE
5.9
EXPLOITABILITY
1.2
REFERENCES
CVE-2026-33560
SUMMARY

The DMP-5000 file service exposes authenticated arbitrary file upload functionality. There are exposed endpoints which allows authenticated users to upload files of any type without validation. No file extension filtering or content inspection is enforced which allows executable binaries and scripts to be accepted and written directly to the server.

PUBLISHED
Date2026-06-26
UPDATED
Date2026-06-26
RISK INFORMATION (Score: 7.1)
CVSS3
Base Score: 7.1
Complexity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N
CVSS4
Base Score: 8.4
Complexity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:H/VA:N/SC:L/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
IMPACT SCORE
4.2
EXPLOITABILITY
2.8
REFERENCES
CVE-2026-31928
SUMMARY

The DMP-5000 devices are shipped with a default administrative web account with weak authentication controls, which are not required to be changed during initial configuration or operation. Using these accounts provides full system access.

PUBLISHED
Date2026-06-26
UPDATED
Date2026-06-26
RISK INFORMATION (Score: 8.1)
CVSS3
Base Score: 8.1
Complexity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
CVSS4
Base Score: 9.3
Complexity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
IMPACT SCORE
5.2
EXPLOITABILITY
2.8
REFERENCES
CVE-2026-28701
SUMMARY

Various versions of Daktronics Controller Firmware could allow authenticated and unauthenticated remote users to escape the intended directory and enumerate arbitrary file system paths.

PUBLISHED
Date2026-06-26
UPDATED
Date2026-06-26
RISK INFORMATION (Score: 9.8)
CVSS3
Base Score: 9.8
Complexity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CVSS4
Base Score: 9.3
Complexity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
IMPACT SCORE
5.9
EXPLOITABILITY
3.9
REFERENCES