Comparison Overview
Grupo Boticário
Grupo Boticário
Avenida Doutor Dário Lopes dos Santos 2197, Curitiba, Paraná, BR, 80210-010
Last Update: 04/04/2026
Beleza é o negócio do Grupo Boticário. Para nós, ela se traduz em nossas quatro unidades de negócio com atuação no setor cosmético: O Boticário, Eudora, quem disse, berenice? e The Beauty Box. A beleza também está no empreendedorismo, na sustentabilidade, inovação, étic...
Avon
Nunn Mills Road, Northampton, GB, NN1 5PA
Last Update: 29/03/2026
Think you know Avon? Think again. We’ve been doing beauty differently for 135 years. Pioneering in listening to women’s needs and speaking out for them. Standing for what matters to them. Supporting their endeavours. We’re a company that connects people through bea...
Compliance Ranges Comparison
Grupo Boticário
Avon
Benchmark & Cyber Underwriting Signals
Incidents vs Personal Care Product Manufacturing Industry Avg (This Year)
No incidents recorded for Grupo Boticário in 2026.
Incidents vs Personal Care Product Manufacturing Industry Avg (This Year)
No incidents recorded for Avon in 2026.
Incident History - Grupo Boticário (X = Date, Y = Severity)
Grupo Boticário cyber incidents detection timeline including parent company and subsidiaries.
Incident History - Avon (X = Date, Y = Severity)
Avon cyber incidents detection timeline including parent company and subsidiaries.
Notable Incidents
Grupo Boticário
Avon
FAQ
Latest Global CVEs
A weakness has been identified in zilliztech deep-searcher up to 0.0.2. This affects the function CollectionRouter.invoke of the file deepsearcher/agent/collection_router.py. This manipulation of the argument kwargs causes improper access controls. Remote exploitation of the attack is possible. The exploit has been made available to the public and could be used for attacks. The pull request to fix this issue awaits acceptance.
A security flaw has been discovered in songquanpeng one-api up to 0.6.11-preview.7. Affected by this issue is the function Redeem of the file model/redemption.go of the component Redemption Code Top-Up Endpoint. The manipulation results in business logic errors. The attack may be launched remotely. The attack requires a high level of complexity. The exploitation is known to be difficult. The exploit has been released to the public and may be used for attacks. The pull request to fix this issue awaits acceptance.
A vulnerability was identified in JeecgBoot up to 3.9.2. Affected by this vulnerability is the function queryPageList of the file src\main\java\org\jeecg\modules\system\controller\SysUserController.java of the component User List Endpoint. The manipulation of the argument salt leads to information disclosure. The attack may be initiated remotely. The attack is considered to have high complexity. The exploitation appears to be difficult. The exploit is publicly available and might be used. A fix is planned for the upcoming release.
A vulnerability was determined in USCiLab Cereal up to 1.3.2. Affected is an unknown function of the component Shared Pointer Handler. Executing a manipulation can lead to type confusion. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure.
A vulnerability was found in Chengdu Everbrite Network Technology BeikeShop up to 1.6.0.22. This impacts the function callback of the file plugins/Stripe/Controllers/StripeController.php of the component Stripe Plugin. Performing a manipulation of the argument Request results in improper authorization. The attack can be initiated remotely. The exploit has been made public and could be used. The patch is named 6719e0fc690ea0a998452092862e0f0a17c65968. It is suggested to install a patch to address this issue.