Comparison Overview

GPI / GPRO

VS

Mahuta Tool Corp.

GPI / GPRO

5252 East 36th Street North, Wichita, Kansas, 67220, US
Last Update: 2025-11-21
View Profile
Between 750 and 799
http://www.greatplainsindustries.com

Great Plains Industries proudly manufactures GPI and GPRO products to serve fuel, agriculture, chemical, construction, mining, oil and gas, and other core markets. GPI is a brand with a strong legacy of fuel, oil, and chemical transfer pumps and meters. GPRO is a brand of fuel transfer pumps and meters made exclusively for commercial applications that demand a more robust, professional grade design. Great Plains Industries got its start in 1968 in Wichita, Kansas. The company has grown into a 178,000 sq. ft. headquarters in northeast Wichita where it manufacturers all GPI and GPRO products. The company portfolio expanded in 2013 with the acquisition of FLOMEC flow meters. FLOMEC products are strategically manufactured in both Sydney, Australia and Wichita, KS facilities. All three product lines have overlap in serving key markets like agriculture and oil & gas. GPI and GPRO products are engineered and assembled at Great Plains Industries in Wichita, KS, USA. Customers can contact Great Plains Industries or locate a distributor partner via the following options. GPI and GPRO product lines are represented by a global network of valued distributors and retail partners. Sydney, Australia: www.GPIpumps.com.au | +61 2 9540 4433 Wichita, KS, USA: www.GreatPlainsIndustries.com | 1-888-996-3837 | [email protected]

NAICS: None
NAICS Definition:
Employees: 54
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

Mahuta Tool Corp.

N118 W19137 Bunsen Dr., Germantown, Wisconsin, 53022, US
Last Update: 2025-11-21
Between 750 and 799
http://www.mahutatool.com

Mahuta Tool Corp. has a reputation for quality workmanship and exceptional work ethics. We are a full-service manufacturer and supplier of tooling, fixtures, dies, assemblies, and CNC machining. Mahuta Tool has been, and will continue to be focused on high quality at a fair price, in both product and service. As a registered ISO 9001 company, Mahuta Tool will always be dedicated to sound engineering, ethical business practices, and innovative design. We strive to develop partnerships with our customers. Presently, we service the automotive, medical, lawn and garden, construction, mining, food, sports equipment, electronic, power generation, food packaging and machine building industries in both tooling and contract machining. We serve the United States and Canada including Wisconsin, Illinois, Minnesota, Texas, Alberta and Ontario, and everywhere in between. Please ask how we may serve your needs. Mahuta Tool Corp. is known in the industry as providing quality workmanship at a fair price with on-time delivery. We strive to develop long-term partnerships with our customers. We are a full-service manufacturer and supplier of CNC machining, assemblies, fixtures, tooling, metal stamping and trim dies. Our experience is extensive in the metal stamping area. We design and build progressive stampings, pierce, and blanking dies that will work for your production needs. This enables us to pay attention to details, such as sensors for die protection or quick die changes that reduce set-up time. We want to become your partner

NAICS: None
NAICS Definition:
Employees: 12
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/great-plains-industries-inc-.jpeg
GPI / GPRO
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/mahuta-tool-corp..jpeg
Mahuta Tool Corp.
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
GPI / GPRO
100%
Compliance Rate
0/4 Standards Verified
Mahuta Tool Corp.
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Industrial Automation Industry Average (This Year)

No incidents recorded for GPI / GPRO in 2025.

Incidents vs Industrial Automation Industry Average (This Year)

No incidents recorded for Mahuta Tool Corp. in 2025.

Incident History — GPI / GPRO (X = Date, Y = Severity)

GPI / GPRO cyber incidents detection timeline including parent company and subsidiaries

Incident History — Mahuta Tool Corp. (X = Date, Y = Severity)

Mahuta Tool Corp. cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/great-plains-industries-inc-.jpeg
GPI / GPRO
Incidents

No Incident

https://images.rankiteo.com/companyimages/mahuta-tool-corp..jpeg
Mahuta Tool Corp.
Incidents

No Incident

FAQ

Both GPI / GPRO company and Mahuta Tool Corp. company demonstrate a comparable AI Cybersecurity Score, with strong governance and monitoring frameworks in place.

Historically, Mahuta Tool Corp. company has disclosed a higher number of cyber incidents compared to GPI / GPRO company.

In the current year, Mahuta Tool Corp. company and GPI / GPRO company have not reported any cyber incidents.

Neither Mahuta Tool Corp. company nor GPI / GPRO company has reported experiencing a ransomware attack publicly.

Neither Mahuta Tool Corp. company nor GPI / GPRO company has reported experiencing a data breach publicly.

Neither Mahuta Tool Corp. company nor GPI / GPRO company has reported experiencing targeted cyberattacks publicly.

Neither GPI / GPRO company nor Mahuta Tool Corp. company has reported experiencing or disclosing vulnerabilities publicly.

Neither GPI / GPRO nor Mahuta Tool Corp. holds any compliance certifications.

Neither company holds any compliance certifications.

Neither GPI / GPRO company nor Mahuta Tool Corp. company has publicly disclosed detailed information about the number of their subsidiaries.

GPI / GPRO company employs more people globally than Mahuta Tool Corp. company, reflecting its scale as a Industrial Automation.

Neither GPI / GPRO nor Mahuta Tool Corp. holds SOC 2 Type 1 certification.

Neither GPI / GPRO nor Mahuta Tool Corp. holds SOC 2 Type 2 certification.

Neither GPI / GPRO nor Mahuta Tool Corp. holds ISO 27001 certification.

Neither GPI / GPRO nor Mahuta Tool Corp. holds PCI DSS certification.

Neither GPI / GPRO nor Mahuta Tool Corp. holds HIPAA certification.

Neither GPI / GPRO nor Mahuta Tool Corp. holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.

Published
Date
2025-11-26
Updated
Date
2025-11-26
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.

Published
Date
2025-11-26
Updated
Date
2025-11-26
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.

Published
Date
2025-11-26
Updated
Date
2025-11-26
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.

Published
Date
2025-11-26
Updated
Date
2025-11-26
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References
Description

Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.

Published
Date
2025-11-26
Updated
Date
2025-11-26
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References