What is the official website of Firmenich ?

The official website of Firmenich is https://www.dsm-firmenich.com/en/home.html.

What is Firmenich's cybersecurity risk score?

Firmenich has an AI-generated cybersecurity risk score of 777 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has Firmenich experienced?

According to Rankiteo, Firmenich currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Firmenich been affected by any supply chain cyber incidents ?

According to Rankiteo, Firmenich has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Firmenich have SOC 2 Type 1 certification ?

According to Rankiteo, Firmenich is not certified under SOC 2 Type 1.

Does Firmenich have SOC 2 Type 2 certification ?

According to Rankiteo, Firmenich does not hold a SOC 2 Type 2 certification.

Does Firmenich comply with GDPR ?

According to Rankiteo, Firmenich is not listed as GDPR compliant.

Does Firmenich have PCI DSS certification ?

According to Rankiteo, Firmenich does not currently maintain PCI DSS compliance.

Does Firmenich comply with HIPAA ?

According to Rankiteo, Firmenich is not compliant with HIPAA regulations.

Does Firmenich have ISO 27001 certification ?

According to Rankiteo,Firmenich is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Firmenich operate in ?

Firmenich operates primarily in the Chemical Manufacturing industry.

How many employees does Firmenich have ?

Firmenich employs approximately 5,388 people worldwide.

Does Firmenich own any subsidiaries ?

Firmenich presently has no subsidiaries across any sectors.

How many LinkedIn followers does Firmenich have ?

Firmenich's official LinkedIn profile has approximately 384,880 followers.

What is the NAICS classification code for Firmenich ?

Firmenich is classified under the NAICS code 325, which corresponds to Chemical Manufacturing.

Does Firmenich have a Crunchbase profile ?

No, Firmenich does not have a profile on Crunchbase.

Does Firmenich have a LinkedIn profile ?

Yes, Firmenich maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/firmenich.

How many cybersecurity incidents has Firmenich experienced ?

As of June 16, 2026, Rankiteo reports that Firmenich has not experienced any cybersecurity incidents.

How many peer or competitor companies does Firmenich have ?

Firmenich has an estimated 4,389 peer or competitor companies worldwide.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

Firmenich

Boost Score +25 with badge (5 left)

777

/1000

Fair

802

/1000

Good

Firmenich Vendor Cyber Rating & Cyber Score

dsm-firmenich.com

Add Your Compliance Badge

Firmenich is since May 9 2023 part of dsm-firmenich. Please follow us here: https://www.linkedin.com/company/dsm-firmenich

Firmenich A.I CyberSecurity Scoring

Scoring History

Firmenich

Firmenich CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

No data available

Loading…

A.I.

Firmenich Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for Firmenich

Incidents vs Chemical Manufacturing Industry Avg (This Year)

No incidents recorded for Firmenich in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Firmenich in 2026.

Incident Types Firmenich vs Chemical Manufacturing Industry Avg (This Year)

No incidents recorded for Firmenich in 2026.

Incident History - Firmenich (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Firmenich Subsidiaries

Firmenich

Chemical Manufacturing

Website: https://www.dsm-firmenich.com/en/home.html

Company Size: 5,388

dsm-firmenichChemical Manufacturing

DSMChemical Manufacturing

dsm-firmenich Animal Nutrition & HealthFarming

dsm-firmenich Taste, Texture & HealthFood and Beverage Services

dsm-firmenich Perfumery & IngredientsFabrication de produits chimiques

dsm-firmenich Beauty & CareHerstellung von Körperpflegeprodukten

dsm-firmenich Pharma SolutionsGeneesmiddelenproductie

Agilex FragrancesChemical Manufacturing

MG INTERNATIONAL FRAGRANCE COMPANYChemical Manufacturing

dsm-firmenich BiomedicalMedical Equipment Manufacturing

i-Health, Inc., a division of dsm-firmenichManufacturing

CAMPUS S.r.l.Food and Beverage Manufacturing

Scentmate by dsm-firmenichChemical Manufacturing

dsm-firmenich VenturingVenture Capital and Private Equity Principals

DRT - Les Dérivés Résiniques et TerpéniquesChemical Manufacturing

ACTION PINChemical Manufacturing

Pinova, Subsidiary of DRTChemical Manufacturing

Loading…

Firmenich Similar Companies

Solvay

solvay.com

For over 160 years, Solvay has been a pioneer in science and innovation, mastering the essential chemistry that powers progress across generations. We are more than a chemical company — we are a catalyst for sustainable transformation, delivering vital solutions that shape a better world. Our purpose is clear: we are essential chemistry, making progress possible for generations. From soda ash to advanced peroxides, our innovations are often unseen but always essential — enabling cleaner mobility, healthier living, and smarter infrastructure. We lead with purpose in key sectors such as construction, healthcare, consumer goods, and automotive. Our products are embedded in everyday life, driving performance and sustainability where it matters most. Our legacy is built on scientific expertise, but our future is shaped by people — by you. Join us in our relentless pursuit of excellence and be part of a global movement to make progress possible for generations to come.

Covestro

cb scom.ly

Covestro is one of the world’s leading manufacturers of high-quality polymer materials and their components. With its innovative products, processes and methods, the company helps enhance sustainability and the quality of life in many areas. Covestro supplies customers around the world in key industries such as mobility, building and living, as well as the electrical and electronics sector. In addition, polymers from Covestro are also used in sectors such as sports and leisure, telecommunications and health, as well as in the chemical industry itself. The company is geared completely to the circular economy. In addition, Covestro aims to achieve climate neutrality for its Scope 1 and Scope 2 emissions by 2035, and the Group’s Scope 3 emissions are also set to be climate neutral by 2050. Covestro generated sales of EUR 14.2 billion in fiscal year 2024. At the end of 2024, the company had 46 production sites worldwide and employed approximately 17,500 people (calculated as full-time equivalents). Data protection information: https://www.covestro.com/en/social-media-privacy-statements

Dow

cb dow.com

Dow (NYSE: DOW) is one of the world’s leading materials science companies, serving customers in high-growth markets such as packaging, infrastructure, mobility and consumer applications. Our global breadth, asset integration and scale, customer-focused innovation and leading business positions enable us to achieve profitable growth and help deliver a sustainable future. We operate manufacturing sites in 29 countries and employ approximately 34,600 people. Dow delivered sales of approximately $40 billion in 2025. References to Dow or the Company mean Dow Inc. and its subsidiaries. Learn more about us at www.dow.com.

Air Liquide

cb airliquide.com

Air Liquide is a world leader in gases, technologies and services for industry and healthcare. Present in 72 countries with 67,800 employees, the Group serves more than 4 million customers and patients. Oxygen, nitrogen and hydrogen are essential small molecules for life, matter and energy. They embody Air Liquide’s scientific territory and have been at the core of the Group’s activities since its creation in 1902. Taking action today while preparing the future is at the heart of Air Liquide’s strategy. With ADVANCE, its strategic plan for 2025, Air Liquide is targeting a global performance, combining financial and extra-financial dimensions. Positioned on new markets, the Group benefits from major assets such as its business model combining resilience and strength, its ability to innovate and its technological expertise. The Group develops solutions contributing to climate and the energy transition—particularly with hydrogen—and takes action to progress in areas of healthcare, digital and high technologies. Air Liquide’s revenue amounted to more than 27.5 billion euros in 2023. Air Liquide is listed on the Euronext Paris stock exchange (compartment A) and belongs to the CAC 40, CAC 40 ESG, EURO STOXX 50, FTSE4Good and DJSI Europe indexes.

Sika

sika.com

Sika is a specialty chemicals company with a globally leading position in the development and production of systems and products for bonding, sealing, damping, reinforcing, and protection in the building sector and industrial manufacturing. Sika has subsidiaries in 102 countries around the world and, in over 400 factories, produces innovative technologies for customers worldwide. In doing so, it plays a crucial role in enabling the transformation of the construction and transportation sector toward greater environmental compatibility. With more than 34,000 employees, the company generated sales of CHF 11.76 billion in 2024. On Sika's LinkedIn page we share our most important corporate news and job openings, as well as a broad mix of content from our Sika subsidiaries around the world. Your Career at Sika: https://www.sika.com/en/career.html Privacy Notice: https://www.sika.com/en/footer/privacy-notice.html

dsm-firmenich

dsm-firmenich.com

We are dsm-firmenich – innovators in nutrition, health, and beauty. We bring progress to life by combining the essential, the desirable, and the sustainable. From our master perfumers and flavorists to our expert nutritionists and scientists, our trailblazing teams work closely with customers, supporting their ambitions with 150+ years of R&D expertise. With a passionate and talented team of close to 30,000 employees, we are determined to be a force for good. And to work together to positively impact people and planet. #webringprogresstolife

Evonik

evonik.com

Evonik goes beyond the boundaries of chemistry with its combination of innovative strength and leading technological expertise. The global chemical company, headquartered in Essen, Germany, is active in more than 100 countries. The common motivation of the approximately 32,000 employees: to provide customers with a decisive competitive advantage with tailor-made products and solutions as a superforce for industry, thereby improving people's lives. In all markets. Every day. Interested in joining our global team? Our wide range of opportunities extends from creative and innovative research through international management all the way to production. Whether you’re studying, starting out in your career or a seasoned professional, come help us make the world a better place. For more information about careers at Evonik, go to: www.careers.evonik.com. #PartOfSomethingSpecial Find our netiquette on: www.evonik.com/netiquette Company Information: https://www.evonik.com/en/meta/company-information.html Privacy Policy: https://www.evonik.com/en/meta/privacy-policy.html

Ecolab

ecolab.com

A trusted partner for millions of customers, Ecolab (NYSE:ECL) is a global sustainability leader offering water, hygiene and infection prevention solutions and services that protect people and the resources vital to life. Building on more than a century of innovation, Ecolab has annual sales of $16 billion, employs approximately 48,000 associates and operates in more than 170 countries around the world. The company delivers comprehensive science-based solutions, data-driven insights and world-class service to advance food safety, maintain clean and safe environments, and optimize water and energy use. Ecolab’s innovative solutions improve operational efficiencies and sustainability for customers in the food, healthcare, high tech, life sciences, hospitality and industrial markets. For more Ecolab news and information, visit www.ecolab.com.

Pidilite Industries Limited

pidilite.com

Since our inception in 1959, Pidilite Industries Limited has been a pioneer in consumer and specialty chemicals in India committed to quality and innovation. For decades, we have been pioneering products for small to large applications, at home and in industry, which have forged strong bonds with people from all occupations. From adhesives, sealants, waterproofing solutions, and construction chemicals to arts & crafts, industrial resins, automotive chemicals, organic pigments, polymers, and more, our product portfolio is as diverse as it is ever-evolving. Today, our brands are trusted household and industrial names, and we are the market leader in adhesives. We continue to uphold excellence and innovation in our footprint around the world in multiple ways. Innovative Solutions: Backed by robust R&D, we pioneer over two-thirds of our products shaping industries & markets. Global Reach: Trusted in over 100 countries, our brands resonate with diverse audiences, supported by manufacturing facilities in more than 9 countries. Sustainability: We integrate sustainability into our DNA, minimizing environmental impact and fostering societal well-being. Great Place to Work: We are a certified Great Place to Work in India (Dec 2021 – Dec 2022). The Company received the ‘Most Promising Company of the Year’ at the CNBC-TV18, 11th India Business Leader Awards (IBLA).

Loading…

NEWS

Firmenich CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

August 26, 2025 11:26 AM

dsm-firmenich to invest €70 million to expand India operations

At dsm-firmenich's pant in Kerala. R-L standing second Rahul Jalan, President dsm-firmenich India, third Juan Pedro Schmid, Counsellor Embassy of...

Read Article

November 11, 2024 08:00 AM

MOVEit fallout: hackers leak employee data from Amazon, MetLife, HSBC, and other major companies

A threat actor on an illicit forum posted massive datasets with millions of records, likely stolen during last year's MOVEit vulnerability...

Read Article

July 08, 2024 07:00 AM

Geneva VC Forestay Capital secures USD 220 million towards Enterprise AI and SaaS

Forestay Capital has closed its second fund at USD 220 million, backed by major European and Swiss family offices.

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-53430

SUMMARY

Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in elixir-grpc grpc (GRPC.Compressor.Gzip, GRPC.Message modules) allows a denial of service via a gzip decompression bomb. This vulnerability is associated with program files lib/grpc/compressor/gzip.ex, lib/grpc/message.ex and program routines 'Elixir.GRPC.Compressor.Gzip':decompress/1, 'Elixir.GRPC.Message':from_data/2. 'Elixir.GRPC.Compressor.Gzip':decompress/1 calls :zlib.gunzip/1 directly on attacker-controlled bytes with no decompressed-size limit, ratio check, or incremental decoding. Because this module is the registered gzip GRPC.Compressor implementation, it is invoked automatically whenever an incoming gRPC frame carries the grpc-encoding: gzip header. :zlib.gunzip/1 allocates the entire decompressed result as a single binary, so a small highly compressible payload (for example a few kilobytes of zeros, which gzip compresses at roughly 1000:1) expands to multiple gigabytes inside a single call. The max_receive_message_length limit is enforced only against the already-decompressed message, so it provides no protection. An unauthenticated remote peer can send a single crafted frame to exhaust the BEAM node's heap and trigger an out-of-memory kill. This issue affects grpc: from 0.4.0 before 1.0.0.

Published

Date2026-06-15

Updated

Date2026-06-15

RISK INFORMATION (Score: )

cvss4

Base Score: 8.7

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

CVE-2026-48854

SUMMARY

Allocation of Resources Without Limits or Throttling vulnerability in elixir-grpc grpc allows unauthenticated attackers to exhaust the BEAM's memory and crash the server by streaming a large or slow-trickle unary request body. 'Elixir.GRPC.Server.Adapters.Cowboy.Handler':read_full_body/3 (lib/grpc/server/adapters/cowboy/handler.ex) accumulates every received chunk into a single growing binary with no size cap. Additionally, when the client omits the grpc-timeout header, the per-chunk read timeout resolves to :infinity, allowing a slow-trickle client to keep the connection alive indefinitely while memory grows. A single connection is sufficient to exhaust server memory and crash the node. This issue affects grpc from 0.3.1 before 1.0.0.

Published

Date2026-06-15

Updated

Date2026-06-15

RISK INFORMATION (Score: )

cvss4

Base Score: 8.7

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

CVE-2026-48853

SUMMARY

Deserialization of Untrusted Data and Allocation of Resources Without Limits or Throttling vulnerabilities in elixir-grpc grpc allow unauthenticated attackers to crash the BEAM node via atom table exhaustion and, when a decoded term flows into a call site that invokes it, achieve remote code execution on the server. 'Elixir.GRPC.Codec.Erlpack':decode/2 (lib/grpc/codec/erlpack.ex) calls :erlang.binary_to_term/1 on the raw gRPC message body without the :safe option, no size bound, and no type guard. Any unauthenticated peer that sends a request with Content-Type: application/grpc+erlpack can send a crafted payload that mints arbitrary new atoms (which are never garbage-collected, exhausting the bounded atom table and crashing the VM) or that encodes a fun term which, if applied anywhere downstream, executes attacker-controlled code inside the server process. This issue affects grpc from 0.4.0 before 1.0.0.

Published

Date2026-06-15

Updated

Date2026-06-15

RISK INFORMATION (Score: )

cvss4

Base Score: 9.2

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

CVE-2026-48723

SUMMARY

The browserstack-cypress-cli is BrowserStack's CLI which allows users to run Cypress tests on BrowserStack. Versions prior to 1.36.4 are vulnerable to OS command injection via the cypress_config_file configuration parameter. In readCypressConfigUtil.js, the loadJsFile() function constructs a shell command by interpolating the user-controlled cypress_config_filepath value into a template literal, then executes it via child_process.execSync(). Shell metacharacters in the config path (specifically " and ;) allow breaking out of the quoted argument and injecting arbitrary commands. This issue has been fixed in version 1.36.6.

Published

Date2026-06-15

Updated

Date2026-06-15

RISK INFORMATION (Score: 7.8)

cvss3

Base Score: 7.8

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

1.8

REFERENCES

CVE-2026-48599

SUMMARY

Authorization Bypass Through User-Controlled Key vulnerability in elixir-grpc grpc allows authenticated attackers to access or modify resources belonging to other users by smuggling a conflicting value for any path-bound field via the query string or request body. In 'Elixir.GRPC.Server.Transcode':map_request/5 (lib/grpc/server/transcode.ex), all three clauses use Map.merge/2 with path bindings as the first argument, giving them the lowest merge precedence. A request such as GET /users/me/profile?user_id=victim (or a POST with {"user_id": "victim"} when body: "*") yields a decoded protobuf struct where the path-bound field carries the attacker-supplied value rather than the router-extracted value. Any handler that uses the path-bound field for authorization, multi-tenancy scoping, or ownership checks is silently bypassed. This issue affects grpc from 0.8.0 before 1.0.0.

Published

Date2026-06-15

Updated

Date2026-06-15

RISK INFORMATION (Score: )

cvss4

Base Score: 7.6

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…