Freyssinet-s.a.u vs Downer - Cyber Risk Comparison & Security Rating

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Comparison Overview

Freyssinet España S.A.U.

Downer

Freyssinet España S.A.U.

Melchor Fernández Almagro nº 23, Madrid, Madrid, 28029, ES

Last Update: 19/12/2025

View Profile

Between 750 and 799

http://www.freyssinet-es.com

754/1000Fair

El grupo Freyssinet reúne un conjunto de experiencia y profesionalidad sin igual en el sector de la ingeniería civil especializada. Las soluciones de Freyssinet responden a las más altas exigencias de la ingeniería civil moderna y de los grandes proyectos de construcció...

NAICS:237

NAICS Definition:Heavy and Civil Engineering Construction

Employees:51

Subsidiaries:124

12-month incidents

Known data breaches

Attack type number

Downer

Triniti Business Campus, 39 Delhi Road, North Ryde, NSW, AU, 2113

Last Update: 01/04/2026

View Profile

Between 750 and 799

http://www.downergroup.com

788/1000Fair

Enabling communities to thrive. It’s what we’ve done for more than 150 years. Solving problems. Making the extraordinary run smoothly every day. We’re keeping the lights on and the water flowing. Running the hospitals that take care of us. Delivering the transport tha...

NAICS:237

NAICS Definition:Heavy and Civil Engineering Construction

Employees:17,988

Subsidiaries:10

12-month incidents

Known data breaches

Attack type number

Compliance Ranges Comparison

Based On Specific Ai Models Category

Freyssinet España S.A.U.

ISO 27001Not verified

SOC2 Type 1Not verified

SOC2 Type 2Not verified

GDPRNot verified

PCI DSSNot verified

HIPAANot verified

Downer

ISO 27001Not verified

SOC2 Type 1Not verified

SOC2 Type 2Not verified

GDPRNot verified

PCI DSSNot verified

HIPAANot verified

Benchmark & Cyber Underwriting Signals

Incidents vs Civil Engineering Industry Avg (This Year)

No incidents recorded for Freyssinet España S.A.U. in 2026.

Incidents

Incidents vs Civil Engineering Industry Avg (This Year)

No incidents recorded for Downer in 2026.

Incidents

Incident History - Freyssinet España S.A.U. (X = Date, Y = Severity)

Freyssinet España S.A.U. cyber incidents detection timeline including parent company and subsidiaries.

No timeline data available

R - Ransomware

C - Cyber Attack

D - Data Breach

V - Vulnerability

Incident History - Downer (X = Date, Y = Severity)

Downer cyber incidents detection timeline including parent company and subsidiaries.

No timeline data available

R - Ransomware

C - Cyber Attack

D - Data Breach

V - Vulnerability

Notable Incidents

Last Cyber / HR Incidents / Global...

Freyssinet España S.A.U.

Incidents

No explicit notable incidents reported.

Downer

Incidents

No explicit notable incidents reported.

FAQ

Between Freyssinet España S.A.U. company and Downer company, which one has the best AI Cybersecurity Score ?

Between Freyssinet España S.A.U. company and Downer company, which one has experienced more cyber incidents in the past ?

Between Freyssinet España S.A.U. company and Downer company, which one has experienced more cyber incidents this year ?

Between Freyssinet España S.A.U. company and Downer company, which one has experienced at least one ransomware attack ?

Between Freyssinet España S.A.U. company and Downer company, which one has experienced at least one data breach ?

Between Freyssinet España S.A.U. company and Downer company, which one has experienced at least one targeted cyberattack ?

Between Freyssinet España S.A.U. company and Downer company, which one has experienced at least one vulnerability ?

Between Freyssinet España S.A.U. company and Downer company, which one holds the most compliance certifications ?

Between Freyssinet España S.A.U. company and Downer company, which one holds the fewest compliance certifications ?

Between Freyssinet España S.A.U. company and Downer company, which one has the most subsidiaries ?

Between Freyssinet España S.A.U. company and Downer company, which one has the largest number of employees ?

Between Freyssinet España S.A.U. and Downer, which company holds both SOC 2 Type 1 certifications ?

Between Freyssinet España S.A.U. and Downer, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified - Freyssinet España S.A.U. or Downer ?

Which company is PCI DSS compliant - Freyssinet España S.A.U. or Downer ?

Between Freyssinet España S.A.U. and Downer, which company complies with HIPAA regulations for healthcare data ?

Between Freyssinet España S.A.U. and Downer, which company complies with GDPR requirements ?

Latest Global CVEs

CVE-2026-44541

SUMMARY

Fides is an open-source privacy engineering platform. From version 2.33.0 to before version 2.84.5, there is a DOM-based XSS vulnerability in fides.js via the fides_description override. This issue has been patched in version 2.84.5.

PUBLISHED

Date2026-06-08

UPDATED

Date2026-06-08

RISK INFORMATION (Score: )

CVSS4

Base Score: 7.0

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

IMPACT SCORE

EXPLOITABILITY

REFERENCES

CVE-2026-49141

SUMMARY

WACRM prior to commit 73041bf contain an authorization bypass vulnerability in the automation engine that allows authenticated attackers to access and modify contacts belonging to other tenants by supplying an arbitrary caller-controlled contact_id in the POST request body without tenant ownership verification. Attackers can exploit the service-role client that bypasses row-level security to modify victim contact fields including name, email, and company across tenant boundaries using only a known contact UUID.

PUBLISHED

Date2026-06-08

UPDATED

Date2026-06-08

RISK INFORMATION (Score: 7.1)

CVSS3

Base Score: 7.1

Complexity: HIGH

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:N

CVSS4

Base Score: 5.1

Complexity: HIGH

CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:N/SC:L/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

IMPACT SCORE

4.7

EXPLOITABILITY

1.8

REFERENCES

CVE-2026-47345

SUMMARY

Namespace attributes are not encoded correctly during HTML serialization. This allows bypassing the cross-site scripting prevention mechanism of typo3/html-sanitizer before version 2.3.2.

PUBLISHED

Date2026-06-08

UPDATED

Date2026-06-08

RISK INFORMATION (Score: )

CVSS4

Base Score: 5.1

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

IMPACT SCORE

EXPLOITABILITY

REFERENCES

CVE-2026-47344

SUMMARY

When ALLOW_INSECURE_RAW_TEXT is enabled, whitespace-variant closing tags (e.g., </style\t>) are not recognized by the sanitizer but accepted by browsers as valid end tags, allowing subsequent content to escape sanitization. This allows bypassing the cross-site scripting prevention mechanism of typo3/html-sanitizer before version 2.3.2.

PUBLISHED

Date2026-06-08

UPDATED

Date2026-06-08

RISK INFORMATION (Score: )

CVSS4

Base Score: 2.1

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

IMPACT SCORE

EXPLOITABILITY

REFERENCES

CVE-2026-46484

SUMMARY

Headplane is a feature-complete Web UI for Headscale. Prior to versions 0.6.3 and 0.7.0-beta.3, Headplane was vulnerable to a path traversal / authorization bypass in the Headscale API client used by node and user rename operations. This issue has been patched in versions 0.6.3 and 0.7.0-beta.3.

PUBLISHED

Date2026-06-08

UPDATED

Date2026-06-08

RISK INFORMATION (Score: 8.1)

CVSS3

Base Score: 8.1

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

IMPACT SCORE

5.2

EXPLOITABILITY

2.8

REFERENCES