What is the official website of Fairmont Heritage Place, Ghirardelli Square ?

The official website of Fairmont Heritage Place, Ghirardelli Square is http://www.fairmont.com/heritage-place/ghirardelli-san-francisco/.

What is Fairmont Heritage Place, Ghirardelli Square's cybersecurity risk score?

Fairmont Heritage Place, Ghirardelli Square has an AI-generated cybersecurity risk score of 771 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has Fairmont Heritage Place, Ghirardelli Square experienced?

According to Rankiteo, Fairmont Heritage Place, Ghirardelli Square currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Fairmont Heritage Place, Ghirardelli Square been affected by any supply chain cyber incidents ?

According to Rankiteo, Fairmont Heritage Place, Ghirardelli Square has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Fairmont Heritage Place, Ghirardelli Square have SOC 2 Type 1 certification ?

According to Rankiteo, Fairmont Heritage Place, Ghirardelli Square is not certified under SOC 2 Type 1.

Does Fairmont Heritage Place, Ghirardelli Square have SOC 2 Type 2 certification ?

According to Rankiteo, Fairmont Heritage Place, Ghirardelli Square does not hold a SOC 2 Type 2 certification.

Does Fairmont Heritage Place, Ghirardelli Square comply with GDPR ?

According to Rankiteo, Fairmont Heritage Place, Ghirardelli Square is not listed as GDPR compliant.

Does Fairmont Heritage Place, Ghirardelli Square have PCI DSS certification ?

According to Rankiteo, Fairmont Heritage Place, Ghirardelli Square does not currently maintain PCI DSS compliance.

Does Fairmont Heritage Place, Ghirardelli Square comply with HIPAA ?

According to Rankiteo, Fairmont Heritage Place, Ghirardelli Square is not compliant with HIPAA regulations.

Does Fairmont Heritage Place, Ghirardelli Square have ISO 27001 certification ?

According to Rankiteo,Fairmont Heritage Place, Ghirardelli Square is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Fairmont Heritage Place, Ghirardelli Square operate in ?

Fairmont Heritage Place, Ghirardelli Square operates primarily in the Hospitality industry.

How many employees does Fairmont Heritage Place, Ghirardelli Square have ?

Fairmont Heritage Place, Ghirardelli Square employs approximately 22 people worldwide.

Does Fairmont Heritage Place, Ghirardelli Square own any subsidiaries ?

Fairmont Heritage Place, Ghirardelli Square presently has no subsidiaries across any sectors.

How many LinkedIn followers does Fairmont Heritage Place, Ghirardelli Square have ?

Fairmont Heritage Place, Ghirardelli Square's official LinkedIn profile has approximately 871 followers.

What is the NAICS classification code for Fairmont Heritage Place, Ghirardelli Square ?

Fairmont Heritage Place, Ghirardelli Square is classified under the NAICS code 7211, which corresponds to Traveler Accommodation.

Does Fairmont Heritage Place, Ghirardelli Square have a Crunchbase profile ?

No, Fairmont Heritage Place, Ghirardelli Square does not have a profile on Crunchbase.

Does Fairmont Heritage Place, Ghirardelli Square have a LinkedIn profile ?

Yes, Fairmont Heritage Place, Ghirardelli Square maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/fairmont-heritage-place-ghirardelli-square.

How many cybersecurity incidents has Fairmont Heritage Place, Ghirardelli Square experienced ?

As of June 6, 2026, Rankiteo reports that Fairmont Heritage Place, Ghirardelli Square has experienced 1 cybersecurity incidents.

How many peer or competitor companies does Fairmont Heritage Place, Ghirardelli Square have ?

Fairmont Heritage Place, Ghirardelli Square has an estimated 14,257 peer or competitor companies worldwide.

What types of cybersecurity incidents has Fairmont Heritage Place, Ghirardelli Square faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Breach.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

FHPGS

Boost Score +25 with badge (5 left)

771

/1000

Fair

796

/1000

Fair

Fairmont Heritage Place, Ghirardelli Square Vendor Cyber Rating & Cyber Score

fairmont.com

Add Your Compliance Badge

Fairmont Heritage Place, Ghirardelli Square, is a private residence club located in Ghirardelli Square on the historic San Francisco waterfront. Situated in the once world-renowned chocolate factory that opened in 1893, it offers a rare opportunity to purchase fractional ownership in a second home within one of the city's most famous national historic landmarks. The property offers luxury fractional homes and hotel amenities, with convenient access to an array of nearby entertainment, cultural, retail and dining options.

FHPGS A.I CyberSecurity Scoring

Scoring History

FHPGS

Fairmont Heritage Place, Ghirardelli Square CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

Fairmont Heritage P...

Breach

06/2018

DED456251223

Loading…

A.I.

FHPGS Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for FHPGS

Incidents vs Hospitality Industry Avg (This Year)

No incidents recorded for Fairmont Heritage Place, Ghirardelli Square in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Fairmont Heritage Place, Ghirardelli Square in 2026.

Incident Types FHPGS vs Hospitality Industry Avg (This Year)

No incidents recorded for Fairmont Heritage Place, Ghirardelli Square in 2026.

Incident History - FHPGS (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Fairmont Heritage Place, Ghirardelli Square Subsidiaries

FHPGS

Hospitality

Website: http://www.fairmont.com/heritage-place/ghirardelli-san-francisco/

Company Size: 22

115

Fairmont Hotels & ResortsHospitality

AccorHospitality

Mövenpick Hotels & ResortsHospitality

SofitelHospitality

Restaurant RenoirRestaurants

Sofitel Mexico ReformaHospitality

Novotel HotelsHospitality

Pullman Hotels & ResortsHospitality

ALL - Accor Live LimitlessTravel Arrangements

ibis, ibis Styles, ibis budgetHospitality

Novotel & ibis Sydney on Darling HarbourHospitality

Ibis Jakarta Mangga DuaHospitality

ibis Mumbai AirportHospitality

ibis Jakarta ArcadiaHospitality

ibis Bengaluru Hosur RoadHospitality

Ibis Styles hotels ZeebruggeLeasing Non-residential Real Estate

Novotel & ibis SoloFood and Beverage Services

ibis Jakarta SenenHospitality

ibis Bali KutaHospitality

Mercure HotelsHospitality

John PaulConsumer Services

MGallery Hotel CollectionHospitality

D-EDGE Hospitality SolutionsHospitality

onefinestayHospitality

ACCOR Meeting Planner & EventsÉvénementiel

hotelF1Hospitality

Accor Heartist SolidarityGestion des associations et fondations

Raffles Hotels & ResortsHospitality

Raffles DubaiHospitality

Le Royal Monceau - Raffles ParisHospitality

Raffles Makkah PalaceHospitality

Raffles Hotel Le Royal, Phnom PenhHospitality

Raffles Grand Hotel d'AngkorHospitality

Raffles SeychellesHospitality

Raffles Hotel SingaporeHospitality

Accor - North & Central AmericaHospitality

The Rimrock Resort HotelHospitality

Swissôtel Hotels & ResortsHospitality

Fairmont Singapore & Swissôtel The StamfordHospitality

Swissôtel LimaHospitality

Swissôtel MakkahHospitality

Swissôtel Büyük Efes, İzmirHospitality

Swissôtel Resort Bodrum BeachHospitality

Swissôtel KolkataHospitality

Swissôtel ChicagoHospitality

Swissôtel SydneyHospitality

Swissôtel AmsterdamHospitality

Swissôtel Merchant Court, SingaporeHospitality

Swissôtel QuitoHospitality

Swissôtel Tallinn, EstoniaHospitality

Swissôtel Nankai OsakaHospitality

Swissôtel Le Plaza Basel (4**** superior)Hospitality

The SavoyHospitality

Fairmont DubaiHospitality

Makkah Clock Royal Tower, A Fairmont HotelHospitality

Fairmont JaipurHospitality

Fairmont MayakobaHospitality

Fairmont The NorfolkHospitality

Fairmont Banff SpringsHospitality

Fairmont Bab Al Bahr, Abu DhabiHospitality

Fairmont AmmanHospitality

Fairmont Chateau Lake LouiseHospitality

Fairmont Jasper Park LodgeHospitality

Fairmont Hotel VancouverHospitality

Fairmont Mount Kenya Safari ClubHospitality

Fairmont Chateau WhistlerHospitality

Fairmont The Queen ElizabethHospitality

Fairmont Nile CityHospitality

Fairmont Pacific RimHospitality

Fairmont St AndrewsHospitality

Fairmont WaterfrontHospitality

Fairmont San FranciscoHospitality

Fairmont Le Château FrontenacHospitality

Fairmont Le Montreux PalaceHospitality

Fairmont Le Manoir RichelieuHospitality

The Plaza, A Fairmont Managed HotelHospitality

Fairmont Scottsdale PrincessHospitality

Meetings at the PrincessHospitality

Fairmont Baku, Flame TowersHospitality

Fairmont Heliopolis & TowersHospitality

Fairmont MakatiHospitality

Fairmont Hotel MacdonaldHospitality

Fairmont PalliserHospitality

Fairmont Olympic HotelHospitality

Fairmont Château LaurierHospitality

Hamilton Princess & Beach Club, a Fairmont Managed HotelHospitality

Fairmont Orchid, HawaiiHospitality

Fairmont Chicago, Millennium ParkHospitality

Fairmont Sonoma Mission Inn & SpaHospitality

Fairmont Kea Lani MauiHospitality

Fairmont Le Château MontebelloHospitality

Fairmont SouthamptonHospitality

Claremont Resort & ClubHospitality

Fairmont Mara Safari ClubHospitality

Fairmont DallasHospitality

Fairmont WinnipegHospitality

Fairmont Vancouver AirportHospitality

Fairmont TremblantHospitality

Fairmont PittsburghHospitality

Fairmont Miramar Hotel & BungalowsHospitality

Fairmont Washington, D.C.Hospitality

Fairmont Peace HotelAccounting

Fairmont BeijingHospitality

Fairmont Royal PavilionHospitality

Fairmont Monte CarloHospitality

Global Events & Meetings Solutions, Fairmont Raffles SwissotelHospitality

Fairmont Heritage Place, Acapulco DiamanteHospitality

Fairmont Heritage Place, At Nature's DoorHospitality

Fairmont Yangcheng LakeHospitality

Fairmont Zimbali Lodge and ResortHospitality

Fairmont Heritage Place, InspirationHospitality

Fairmont Royal YorkHospitality

Sheraton Suites Calgary Eau ClaireHospitality

Fairmont Copley Plaza BostonHospitality

Fairmont Grand Hotel KyivHospitality

Loading…

Fairmont Heritage Place, Ghirardelli Square Similar Companies

Whitbread

cb whitbreadcareers.com

Whitbread PLC is the owner of the UK’s favourite hotel chain, Premier Inn, as well as restaurant brands, Beefeater, Brewers Fayre, Table Table, Bar + Block and Cookhouse and Pub. Whitbread employs more than 35,000 people in more than 1,200 Premier Inn hotels and restaurants across the UK and Germany, serving over five million customers every month. At Whitbread we are committed to being a force for good in the communities in which we operate. Our Sustainability programme, ‘Force for Good’ is focused on enabling people to live and work well and is built around three pillars of Opportunity, Community and Responsibility. Whitbread PLC is listed on the London Stock Exchange and is a constituent of the FTSE 100. It is also a member of the FTSE4Good Index.

Kerzner International

kerzner.com

Kerzner International has built a diverse collection of iconic brands and luxury properties, earning international acclaim for pioneering destination-defining hospitality, delivering unrivalled service, and curating transformative guest experiences. We are renowned for creating hospitality brands that are distinct and disruptive. Through Atlantis, One&Only, SIRO, and Rare Finds, our portfolio provides unforgettable and immersive experiences for guests in search of extraordinary moments. From authentic cultural exploration to innovative luxury concepts, every brand we build challenges convention to create unique journeys of discovery. We are a company that never settles. Because of this, we attract colleagues who share our desire to push until the next level is achieved, and then to keep going. We invest in our colleagues and our communities by working proactively to create jobs, training, education and opportunities that enrich lives. Our colleagues are at the heart of who we are and what we do. International resorts go hand in hand with an international team. In fact, we have more than 16,000 colleagues representing over 120 nationalities. And although we come from all over the world, we are united by the drive to create amazing experiences and everlasting memories for all.

Best Western Hotels & Resorts

bestwestern.com

Best Western Hotels & Resorts headquartered in Phoenix, Arizona, is a privately held hotel company within the BWH℠ Hotels global enterprise. With 19 brands and approximately 4,300 hotels in over 100 countries and territories worldwide*, BWH Hotels suits the needs of developers and guests in every market. Brands include Best Western®, Best Western Plus®, Best Western Premier®, @HOME by Best WesternSM, Executive Residency by Best Western®, Vīb®, GLō®, Aiden®, Sadie®, BW Premier Collection® and BW Signature Collection®. Through acquisition, WorldHotelsTM Luxury, Elite, Distinctive and Crafted collections are also offered. Completing the portfolio is SureStay®, SureStay Plus®, SureStay Collection® and SureStay Studio® franchises**. For more information visit www.bestwestern.com, www.bestwesterndevelopers.com, www.worldhotels.com and www.surestay.com. * Numbers are approximate, may fluctuate, and include hotels currently in the development pipeline. **All Best Western, WorldHotels and SureStay branded hotels are independently owned and operated.

Landry's

landrysinc.com

Landry's is a multinational, diversified restaurant, hospitality, gaming, and entertainment leader based in Houston, Texas. The company operates more than 600 establishments around the world, including well-known concepts, such as Landry’s Seafood House, Bubba Gump Shrimp Co., Rainforest Cafe, Morton’s The Steakhouse, The Oceanaire Seafood Room, McCormick & Schmick’s, Chart House, Saltgrass Steak House, Del Frisco’s Double Eagle Steakhouse, Palm Restaurants, and Mastro’s Restaurants. The company also operates a group of signature restaurants, including Vic & Anthony’s Steakhouse, Grotto, Willie G’s, and others. The gaming division includes the renowned Golden Nugget Hotel and Casino concept, with locations in Las Vegas and Laughlin, NV, Atlantic City, NJ, Biloxi, MS, and Lake Charles, LA. The entertainment and hospitality divisions encompass popular destinations, including the Galveston Island Historic Pleasure Pier, Kemah Boardwalk, Aquarium Restaurants, and other exciting attractions, coupled with deluxe accommodations throughout the Houston and Galveston area, including The Post Oak Hotel at Uptown Houston, Westin Houston Downtown, Kemah Boardwalk Inn and The San Luis Resort, including the Hilton Galveston Island Resort and Holiday Inn Galveston on the Beach located on Galveston Island.

Aramark

cb aramark.com

Aramark (NYSE: ARMK) proudly serves the world’s leading educational institutions, Fortune 500 companies, world champion sports teams, prominent healthcare providers, iconic destinations and cultural attractions, and numerous municipalities in 16 countries around the world with food and facilities management. Because of our hospitality culture, our employees strive to do great things for each other, our partners, our communities, and the planet.

IHG Hotels & Resorts

ihgplc.com

IHG Hotels & Resorts [LON:IHG, NYSE:IHG (ADRs)] is a global hospitality company, with a purpose to provide True Hospitality for Good. With a family of 21 hotel brands and IHG One Rewards, one of the world's largest hotel loyalty programmes, IHG has over 7,000 open hotels in more than 100 countries, and a development pipeline of over 2,300 properties. Luxury & Lifestyle: Six Senses Hotels Resorts Spas, Regent Hotels & Resorts, InterContinental Hotels & Resorts, Vignette Collection, Kimpton Hotels & Restaurants, Hotel Indigo Premium: Noted Collection, voco hotels, Ruby, HUALUXE Hotels & Resorts, Crowne Plaza Hotels & Resorts, EVEN Hotels Essentials: Holiday Inn Express, Holiday Inn Hotels & Resorts, Garner hotels, avid hotels Suites: Atwell Suites, Staybridge Suites, Holiday Inn Club Vacations, Candlewood Suites Exclusive Partners: Iberostar Beachfront Resorts InterContinental Hotels Group PLC is the Group's holding company and is incorporated and registered in England and Wales. Approximately 400,000 people work across IHG's hotels and corporate offices globally. Visit us online for more about our hotels and reservations and IHG One Rewards. To download the IHG One Rewards app, visit the Apple App or Google Play stores.

Hilton Grand Vacations

cb hgv.com

Hilton Grand Vacations is a global leader in vacation ownership, developing, marketing and operating a portfolio of high-quality, shared-ownership properties in highly desired vacation destinations. Our company also manages and operates innovative club membership programs providing exclusive exchange, leisure travel, and reservation services for our Members. At Hilton Grand Vacations, our culture of hospitality extends to our more than 10,000 Team Members who collectively play an important role in delivering exceptional service, quality accommodations, and memorable travel experiences. That’s why we’ve created a workplace that supports growth, opportunity, work-life balance, and respect throughout our Club affiliated properties, sales centers, and corporate offices around the globe.

Rosewood Hotel Group

rosewoodhotelgroup.com

Rosewood Hotel Group is one of the world’s leading global lifestyle and hospitality management groups. It encompasses four brands: ultra-luxury Rosewood; upper-upscale New World Hotels & Resorts; Asaya, an integrated well-being concept; and Carlyle & Co., a modern and progressive private members club. Its combined hotel portfolio consists of 59 properties in 26 countries with more than 30 new properties currently under development. OUR PURPOSE AND CULTURE We are driven to create a future where people and place enrich one another. We are wholly committed to rooting ourselves more deeply in every place we are in while setting new benchmarks for positive impact. As a pioneering collective with a common purpose, we curate extraordinary moments and honor the soul of every place along our journey. At Rosewood Hotel Group, we answer The Calling. Together, we Make the Place. OUR GUIDING PHILOSOPHY We believe in and are guided by Relationship Hospitality. We are all about heartfelt interactions. A desire to build genuine, rewarding and lasting relationships with everyone we meet comes naturally to us. OUR COMMITMENT At Rosewood Hotel Group, your voice is heard – and valued. We’re a community that encourages associates to be themselves, not fit into a fixed culture, and this philosophy shines through in our commitments to reflect and honor the history, culture and geography of our destinations. We’re not only committed to building and nurturing genuine, long-lasting relationships but to transforming them – and our Diversity, Equity and Inclusion (DEI) strategy helps put these principles into practice.

Hilton

cb hilton.com

Hilton (NYSE: HLT) is a leading global hospitality company with a portfolio of 24 world-class brands comprising more than 8,400 properties and over 1.25 million rooms, in 140 countries and territories. Dedicated to fulfilling its founding vision to fill the earth with the light and warmth of hospitality, Hilton has welcomed over 3 billion guests in its more than 100-year history, was named the No. 1 World’s Best Workplace by Great Place to Work and Fortune and has been recognized as a global leader on the Dow Jones Sustainability Indices. Hilton has introduced industry-leading technology enhancements to improve the guest experience, including Digital Key Share, automated complimentary room upgrades and the ability to book confirmed connecting rooms. Through the award-winning guest loyalty program Hilton Honors, the more than 210 million Hilton Honors members who book directly with Hilton can earn Points for hotel stays and experiences money can't buy. With the free Hilton Honors app, guests can book their stay, select their room, check in, unlock their door with a Digital Key and check out, all from their smartphone. Visit stories.hilton.com for more information, and connect with Hilton on Facebook, X, LinkedIn, Instagram and YouTube.

Loading…

NEWS

Fairmont Heritage Place, Ghirardelli Square CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-7654

SUMMARY

The Admin Columns plugin for WordPress is vulnerable to PHP Object Injection leading to Remote Code Execution in versions up to and including 7.0.18. This is due to the use of `unserialize()` without an `allowed_classes` restriction in the `IdsToCollection::get_ids_from_string()` function, which processes attacker-controlled post meta values without proper validation. This makes it possible for authenticated attackers with Contributor-level access and above to inject a serialized PHP object into a post's custom meta field and trigger arbitrary code execution by exploiting a bundled POP gadget chain, resulting in remote code execution as the web server user.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: 8.8)

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

2.8

REFERENCES

CVE-2026-7523

SUMMARY

The Alba Board plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.1.3. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for authenticated attackers, with subscriber-level access and above, to access arbitrary private alba_card post data, including title, description, assignee, due date, tags, and comments, that is intended to be restricted to Administrators and Editors. The handler is registered via the wp_ajax_nopriv_ hook and its nonce is exposed to all site visitors through wp_localize_script on pages containing the [alba_board] shortcode, making this exploitable by unauthenticated users who can access any such page.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: 4.3)

cvss3

Base Score: 4.3

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Impact Score

1.4

Exploitability

2.8

REFERENCES

CVE-2026-45409

SUMMARY

Internationalized Domain Names in Applications (IDNA) for Python provides support for Internationalized Domain Names in Applications (IDNA) and Unicode IDNA Compatibility Processing. In versions prior to 3.15, payloads such as `"\u0660" * N` or `"\u30fb" * N + "\u6f22"` utilize the `valid_contexto` function prior to length rejection, and for high values of `N` will take a long time to process. This is the same issue as CVE-2024-3651, however the original remediation in 2024 was not a complete fix. A specially crafted argument to the `idna.encode()` function could consume significant resources. This may lead to a denial-of-service. Starting in version 3.14, the function rejects long inputs as soon as practicable prior to any further processing to minimize resource consumption. In version 3.15, this approach was extended to lesser used alternate functions (i.e. per-label conversions and codec support). A workaround is available. Domain names cannot exceed 253 characters in length. If this length limit is enforced prior to passing the domain to the `idna.encode()` function, it should no longer consume significant resources. This is triggered by arbitrarily large inputs that would not occur in normal usage, but may be passed to the library assuming there is no preliminary input validation by the higher-level application.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 6.9

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://github.com/kjd/idna/security/advisories/GHSA-65pc-fj4g-8rjx

CVE-2026-11431

SUMMARY

A path traversal vulnerability exists in the Projects Service download endpoint shared by Altium Enterprise Server and Altium 365. An authenticated user can supply a crafted path parameter that bypasses validation, allowing arbitrary files (including entire directories returned as archives) to be read from the server filesystem. Because the readable files include service configuration and credential material, exploitation can be used to gather information enabling further compromise. The issue can be combined with CVE-2026-11424 to reach the cloud-side endpoint. On multi-tenant Altium 365 deployments, the readable configuration could have exposed credentials shared across services. Altium Enterprise Server is fixed in 8.1.1; the issue has been remediated in Altium 365 at the service level.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 8.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://www.altium.com/platform/security-compliance/security-advisories

CVE-2026-11429

SUMMARY

A path traversal vulnerability exists in the Git Service component shared by Altium Enterprise Server and Altium 365. The service accepts a sequence of post-clone file-manipulation operations that use user-supplied paths without validation, allowing an authenticated user with basic git access to move arbitrary files outside the intended repository area. This file-move primitive can be used to place attacker-controlled script content into directories where it is later executed by the service, resulting in remote code execution under the Git Service account. On multi-tenant Altium 365 deployments, this could have allowed access to data belonging to other tenants on the same infrastructure node. Altium Enterprise Server is fixed in 8.1.1; the issue has been remediated in Altium 365 at the service level.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 9.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://www.altium.com/platform/security-compliance/security-advisories

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…