Comparison Overview

ergomotion® US

6790 Navigator Drive, None, Goleta, California, US, 93117

Last Update: 2025-11-27

Between 750 and 799

http://www.ergomotion.com

From our headquarters in Santa Barbara, and across our global supply chain, our mission is to provide holistic wellness solutions through quality of sleep. Since founder Alain Clénet created his first adjustable base in 2006, we have been innovating new ways to combine smart technology with ergonomically designed bed base solutions. As the world’s leading supplier of adjustable beds, we’ve provided millions of people with wellness solutions that help balance body, mind, and spirit. We have over a decade of experience in helping increase retailers’ profitability and seamlessly integrating into their business plans, as we bring new life to sleep health.

NAICS: 337

NAICS Definition: Furniture and Related Product Manufacturing

Employees: None

Subsidiaries: 0

12-month incidents

0

Known data breaches

0

Attack type number

0

View Profile

HKLIVING

De Dieze 2, Dronten, 8253, NL

Last Update: 2025-11-23

Between 750 and 799

http://www.hkliving.nl

HKliving is a Dutch interior brand founded bij Emiel Hetsen and Sander Klaver. The initials of both their last names have been used to create the brand name HKliving. The combination of a creative mind and a mathematical brain has turned out to be a winning formula. At the base HKliving creates accessible collections with products inspired by traditional and useable designs while respecting its history, but always to give it a modern look and feel. During the desiging process the emphasis has been placed on honoring the original style/influence, but very much creating accesible items at the same time. The Headquarters of HKliving is based in Dronten, the Netherlands. This is also where our main warehouse is located. Next to this we have distribution centers in Australia, USA and China to supply our retailers worldwide. Our collections are available in 55 countries via our network of approximately 2.000 retailers.

NAICS: 337

NAICS Definition: Furniture and Related Product Manufacturing

Employees: 84

Subsidiaries: 0

12-month incidents

0

Known data breaches

0

Attack type number

0

ergomotion® US

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

HKLIVING

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Furniture and Home Furnishings Manufacturing Industry Average (This Year)

No incidents recorded for ergomotion® US in 2025.

Incidents vs Furniture and Home Furnishings Manufacturing Industry Average (This Year)

No incidents recorded for HKLIVING in 2025.

Incident History — ergomotion® US (X = Date, Y = Severity)

ergomotion® US cyber incidents detection timeline including parent company and subsidiaries

Incident History — HKLIVING (X = Date, Y = Severity)

HKLIVING cyber incidents detection timeline including parent company and subsidiaries

ergomotion® US

Incidents

No Incident

HKLIVING

Incidents

No Incident

ergomotion® US company demonstrates a stronger AI Cybersecurity Score compared to HKLIVING company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, HKLIVING company has disclosed a higher number of cyber incidents compared to ergomotion® US company.

In the current year, HKLIVING company and ergomotion® US company have not reported any cyber incidents.

Neither HKLIVING company nor ergomotion® US company has reported experiencing a ransomware attack publicly.

Neither HKLIVING company nor ergomotion® US company has reported experiencing a data breach publicly.

Neither HKLIVING company nor ergomotion® US company has reported experiencing targeted cyberattacks publicly.

Neither ergomotion® US company nor HKLIVING company has reported experiencing or disclosing vulnerabilities publicly.

Neither ergomotion® US nor HKLIVING holds any compliance certifications.

Neither company holds any compliance certifications.

Neither ergomotion® US company nor HKLIVING company has publicly disclosed detailed information about the number of their subsidiaries.

Neither ergomotion® US nor HKLIVING holds SOC 2 Type 1 certification.

Neither ergomotion® US nor HKLIVING holds SOC 2 Type 2 certification.

Neither ergomotion® US nor HKLIVING holds ISO 27001 certification.

Neither ergomotion® US nor HKLIVING holds PCI DSS certification.

Neither ergomotion® US nor HKLIVING holds HIPAA certification.

Neither ergomotion® US nor HKLIVING holds GDPR certification.

Description

ThingsBoard in versions prior to v4.2.1 allows an authenticated user to upload malicious SVG images via the "Image Gallery", leading to a Stored Cross-Site Scripting (XSS) vulnerability. The exploit can be triggered when any user accesses the public API endpoint of the malicious SVG images, or if the malicious images are embedded in an `iframe` element, during a widget creation, deployed to any page of the platform (e.g., dashboards), and accessed during normal operations. The vulnerability resides in the `ImageController`, which fails to restrict the execution of JavaScript code when an image is loaded by the user's browser. This vulnerability can lead to the execution of malicious code in the context of other users' sessions, potentially compromising their accounts and allowing unauthorized actions.

Published

Date

2025-11-27

Updated

Date

2025-11-27

Risk Information

cvss4

Base: 6.2

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:H/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to to verify that the token used during the code exchange originates from the same authentication flow, which allows an authenticated user to perform account takeover via a specially crafted email address used when switching authentication methods and sending a request to the /users/login/sso/code-exchange endpoint. The vulnerability requires ExperimentalEnableAuthenticationTransfer to be enabled (default: enabled) and RequireEmailVerification to be disabled (default: disabled).

Published

Date

2025-11-27

Updated

Date

2025-11-27

Risk Information

cvss3

Base: 9.9

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

References

https://mattermost.com/security-updates

Description

Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to sanitize team email addresses to be visible only to Team Admins, which allows any authenticated user to view team email addresses via the GET /api/v4/channels/{channel_id}/common_teams endpoint

Published

Date

2025-11-27

Updated

Date

2025-11-27

Risk Information

cvss3

Base: 4.3

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

References

https://mattermost.com/security-updates

Description

Exposure of email service credentials to users without administrative rights in Devolutions Server.This issue affects Devolutions Server: before 2025.2.21, before 2025.3.9.

Published

Date

2025-11-27

Updated

Date

2025-11-27

References

https://devolutions.net/security/advisories/DEVO-2025-0018/

Description

Exposure of credentials in unintended requests in Devolutions Server.This issue affects Server: through 2025.2.20, through 2025.3.8.

Published

Date

2025-11-27

Updated

Date

2025-11-27

References

https://devolutions.net/security/advisories/DEVO-2025-0018/

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

ergomotion® US

VS

HKLIVING

ergomotion® US

HKLIVING

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Furniture and Home Furnishings Manufacturing Industry Average (This Year)

Incidents vs Furniture and Home Furnishings Manufacturing Industry Average (This Year)

Incident History — ergomotion® US (X = Date, Y = Severity)

Incident History — HKLIVING (X = Date, Y = Severity)

Notable Incidents

No Incident

No Incident

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2025-3261

Risk Information

CVE-2025-12421

Risk Information

CVE-2025-12559

Risk Information

CVE-2025-13765

CVE-2025-13758

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

ergomotion® US

VS

HKLIVING

ergomotion® US

HKLIVING

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Furniture and Home Furnishings Manufacturing Industry Average (This Year)

Incidents vs Furniture and Home Furnishings Manufacturing Industry Average (This Year)

Incident History — ergomotion® US (X = Date, Y = Severity)

Incident History — HKLIVING (X = Date, Y = Severity)

Notable Incidents

No Incident

No Incident

FAQ

Between ergomotion® US company and HKLIVING company, which one has the best AI Cybersecurity Score ?

Between ergomotion® US company and HKLIVING company, which one has experienced more cyber incidents in the past ?

Between ergomotion® US company and HKLIVING company, which one has experienced more cyber incidents this year ?

Between ergomotion® US company and HKLIVING company, which one has experienced at least one ransomware attack ?

Between ergomotion® US company and HKLIVING company, which one has experienced at least one data breach ?

Between ergomotion® US company and HKLIVING company, which one has experienced at least one targeted cyberattack ?

Between ergomotion® US company and HKLIVING company, which one has experienced at least one vulnerability ?

Between ergomotion® US company and HKLIVING company, which one holds the most compliance certifications ?

Between ergomotion® US company and HKLIVING company, which one holds the fewest compliance certifications ?

Between ergomotion® US company and HKLIVING company, which one has the most subsidiaries ?

Between ergomotion® US company and HKLIVING company, which one has the largest number of employees ?

Between ergomotion® US and HKLIVING, which company holds both SOC 2 Type 1 certifications ?

Between ergomotion® US and HKLIVING, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — ergomotion® US or HKLIVING ?

Which company is PCI DSS compliant — ergomotion® US or HKLIVING ?

Between ergomotion® US and HKLIVING, which company complies with HIPAA regulations for healthcare data ?

Between ergomotion® US and HKLIVING, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2025-3261

Risk Information

CVE-2025-12421

Risk Information

CVE-2025-12559

Risk Information

CVE-2025-13765

CVE-2025-13758