Comparison Overview

Q: Between GENERON company and Ecopetrol company, which one has the best AI Cybersecurity Score ?

Ecopetrol company demonstrates a stronger AI Cybersecurity Score compared to GENERON company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Q: Between GENERON company and Ecopetrol company, which one has experienced more cyber incidents in the past ?

Historically, Ecopetrol company has disclosed a higher number of cyber incidents compared to GENERON company.

Q: Between GENERON company and Ecopetrol company, which one has experienced more cyber incidents this year ?

In the current year, Ecopetrol company and GENERON company have not reported any cyber incidents.

Q: Between GENERON company and Ecopetrol company, which one has experienced at least one ransomware attack ?

Neither Ecopetrol company nor GENERON company has reported experiencing a ransomware attack publicly.

Q: Between GENERON company and Ecopetrol company, which one has experienced at least one data breach ?

Neither Ecopetrol company nor GENERON company has reported experiencing a data breach publicly.

Q: Between GENERON company and Ecopetrol company, which one has experienced at least one targeted cyberattack ?

Neither Ecopetrol company nor GENERON company has reported experiencing targeted cyberattacks publicly.

Q: Between GENERON company and Ecopetrol company, which one has experienced at least one vulnerability ?

Neither GENERON company nor Ecopetrol company has reported experiencing or disclosing vulnerabilities publicly.

Q: Between GENERON company and Ecopetrol company, which one holds the most compliance certifications ?

Neither GENERON nor Ecopetrol holds any compliance certifications.

Q: Between GENERON company and Ecopetrol company, which one has the most subsidiaries ?

Neither GENERON company nor Ecopetrol company has publicly disclosed detailed information about the number of their subsidiaries.

GENERON

16250 Tomball Parkway, Houston, TX, 77086, US

Last Update: 2025-03-07 (UTC)

View Profile

Between 700 and 749

http://generon.com

GENERON IGS is one of the only companies that design, manufacture and package customized air & gas separation and compression solutions for the Petro-Chemical, Environmental, Marine, Industrial, Aircraft and Oil & Gas Industries. Our ISO, ASME, PED, and UL/CSA Certified plants and facilities in Houston, Texas and California allow the hands on monitoring of quality control while delivering the most cost effective products. GENERON Design and Manufacture from Concept to Completion

NAICS: 211

NAICS Definition:

Employees: 96

Subsidiaries: 0

12-month incidents

0

Known data breaches

0

Attack type number

0

View Profile

Ecopetrol

Cra. 13 No. 36-24 Bogot√°, ----, CO

Last Update: 2025-05-06 (UTC)

Between 750 and 799

http://www.ecopetrol.com.co

Ecopetrol (NYSE: EC) es la compa√±√≠a m√°s grande en Colombia y uno de los principales grupos de energ√≠a de Latinoam√©rica. Cuenta con m√°s de 18.000 empleados y es responsable del 60% de la producci√≥n de hidrocarburos en Colombia. Es propietaria de las dos refiner√≠as del Colombia y de la gran parte de la infraestructura del segmento de transporte. A su vez, participa en la venta de energ√≠a y distribuci√≥n de gas. En el panorama internacional, el foco estrat√©gico de Ecopetrol se concentra en las cuencas del continente americano. Tiene operaci√≥n y participa en proyectos de exploraci√≥n y producci√≥n en Estados Unidos (Cuenca Permian y Golfo de M√©xico), Brasil y M√©xico. Como parte de la estrategia de sosTECnibilidad, la compa√±√≠a lidera diferentes iniciativas en aspectos claves como descarbonizaci√≥n, energ√≠as renovables, gesti√≥n del agua, Desarrollo sostenible del territorio y transformaci√≥n digital. Ecopetrol (NYSE: EC) is the largest company in Colombia and one of the leading integrated energy groups in the American continent, with operations in over eight countries. Its operations span the hydrocarbons value chain (upstream, midstream, downstream), gas distribution, energy transmission, management of real-time systems, road concessions, and telecommunications. As part of its TESG agenda (Technology, Environmental, Social and Governance), the company is leading several initiatives for diversification and decarbonization through, among others, renewables, electrification, natural climate solutions, and hydrogen. All the above, underpinned by innovation and technology as catalyzers of sustainability.

NAICS: 211

NAICS Definition: Oil and Gas Extraction

Employees: 10,001+

Subsidiaries: 0

12-month incidents

0

Known data breaches

0

Attack type number

0

GENERON

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Ecopetrol

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Oil and Gas Industry Average (This Year)

No incidents recorded for GENERON in 2025.

Incidents vs Oil and Gas Industry Average (This Year)

No incidents recorded for Ecopetrol in 2025.

Incident History — GENERON (X = Date, Y = Severity)

GENERON cyber incidents detection timeline including parent company and subsidiaries

Incident History — Ecopetrol (X = Date, Y = Severity)

Ecopetrol cyber incidents detection timeline including parent company and subsidiaries

GENERON

Incidents

No Incident

Ecopetrol

Incidents

No Incident

Ecopetrol company demonstrates a stronger AI Cybersecurity Score compared to GENERON company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, Ecopetrol company has disclosed a higher number of cyber incidents compared to GENERON company.

In the current year, Ecopetrol company and GENERON company have not reported any cyber incidents.

Neither Ecopetrol company nor GENERON company has reported experiencing a ransomware attack publicly.

Neither Ecopetrol company nor GENERON company has reported experiencing a data breach publicly.

Neither Ecopetrol company nor GENERON company has reported experiencing targeted cyberattacks publicly.

Neither GENERON company nor Ecopetrol company has reported experiencing or disclosing vulnerabilities publicly.

Neither GENERON nor Ecopetrol holds any compliance certifications.

Neither company holds any compliance certifications.

Neither GENERON company nor Ecopetrol company has publicly disclosed detailed information about the number of their subsidiaries.

GENERON company employs more people globally than Ecopetrol company, reflecting its scale as a Oil and Gas.

Neither GENERON nor Ecopetrol holds SOC 2 Type 1 certification.

Neither GENERON nor Ecopetrol holds SOC 2 Type 2 certification.

Neither GENERON nor Ecopetrol holds ISO 27001 certification.

Neither GENERON nor Ecopetrol holds PCI DSS certification.

Neither GENERON nor Ecopetrol holds HIPAA certification.

Neither GENERON nor Ecopetrol holds GDPR certification.

Description

The Bold Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘percentage’ parameter in all versions up to, and including, 5.4.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

Published

Date

2025-10-23

Updated

Date

2025-10-23

Risk Information

cvss3

Base: 6.4

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N

References

Description

The ComboServlet in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.2, 2023.Q3.1 through 2023.Q3.5, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions does not limit the number or size of the files it will combine, which allows remote attackers to create very large responses that lead to a denial of service attack via the URL query string.

Published

Date

2025-10-23

Updated

Date

2025-10-23

Risk Information

cvss4

Base: 6.9

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-62254

Description

A relative path traversal vulnerability was discovered in Productivity Suite software version 4.4.1.19. The vulnerability allows an unauthenticated remote attacker to interact with the ProductivityService PLC simulator and delete arbitrary directories on the target machine.

Published

Date

2025-10-23

Updated

Date

2025-10-23

Risk Information

cvss3

Base: 4.0

Severity: HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N

cvss4

Base: 6.3

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

A relative path traversal vulnerability was discovered in Productivity Suite software version 4.4.1.19. The vulnerability allows an unauthenticated remote attacker to interact with the ProductivityService PLC simulator and create arbitrary directories on the target machine.

Published

Date

2025-10-23

Updated

Date

2025-10-23

Risk Information

cvss3

Base: 4.0

Severity: HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N

cvss4

Base: 6.3

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

A relative path traversal vulnerability was discovered in Productivity Suite software version 4.4.1.19. The vulnerability allows an unauthenticated remote attacker to interact with the ProductivityService PLC simulator and delete arbitrary files on the target machine.

Published

Date

2025-10-23

Updated

Date

2025-10-23

Risk Information

cvss3

Base: 7.5

Severity: HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:H

cvss4

Base: 8.3

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

GENERON

VS

Ecopetrol

GENERON

Ecopetrol

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Oil and Gas Industry Average (This Year)

Incidents vs Oil and Gas Industry Average (This Year)

Incident History — GENERON (X = Date, Y = Severity)

Incident History — Ecopetrol (X = Date, Y = Severity)

Notable Incidents

No Incident

No Incident

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2025-7730

Risk Information

CVE-2025-62254

Risk Information

CVE-2025-60023

Risk Information

CVE-2025-59776

Risk Information

CVE-2025-58429

Risk Information

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

GENERON

VS

Ecopetrol

GENERON

Ecopetrol

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Oil and Gas Industry Average (This Year)

Incidents vs Oil and Gas Industry Average (This Year)

Incident History — GENERON (X = Date, Y = Severity)

Incident History — Ecopetrol (X = Date, Y = Severity)

Notable Incidents

No Incident

No Incident

FAQ

Between GENERON company and Ecopetrol company, which one has the best AI Cybersecurity Score ?

Between GENERON company and Ecopetrol company, which one has experienced more cyber incidents in the past ?

Between GENERON company and Ecopetrol company, which one has experienced more cyber incidents this year ?

Between GENERON company and Ecopetrol company, which one has experienced at least one ransomware attack ?

Between GENERON company and Ecopetrol company, which one has experienced at least one data breach ?

Between GENERON company and Ecopetrol company, which one has experienced at least one targeted cyberattack ?

Between GENERON company and Ecopetrol company, which one has experienced at least one vulnerability ?

Between GENERON company and Ecopetrol company, which one holds the most compliance certifications ?

Between GENERON company and Ecopetrol company, which one holds the fewest compliance certifications ?

Between GENERON company and Ecopetrol company, which one has the most subsidiaries ?

Between GENERON company and Ecopetrol company, which one has the largest number of employees ?

Between GENERON and Ecopetrol, which company holds both SOC 2 Type 1 certifications ?

Between GENERON and Ecopetrol, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — GENERON or Ecopetrol ?

Which company is PCI DSS compliant — GENERON or Ecopetrol ?

Between GENERON and Ecopetrol, which company complies with HIPAA regulations for healthcare data ?

Between GENERON and Ecopetrol, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2025-7730

Risk Information

CVE-2025-62254

Risk Information

CVE-2025-60023

Risk Information

CVE-2025-59776

Risk Information

CVE-2025-58429

Risk Information