Comparison Overview

Q: Between Guidehouse company and ERM company, which one has the best AI Cybersecurity Score ?

ERM company demonstrates a stronger AI Cybersecurity Score compared to Guidehouse company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Q: Between Guidehouse company and ERM company, which one has experienced more cyber incidents in the past ?

Guidehouse company has historically faced a number of disclosed cyber incidents, whereas ERM company has not reported any.

Q: Between Guidehouse company and ERM company, which one has experienced more cyber incidents this year ?

In the current year, ERM company and Guidehouse company have not reported any cyber incidents.

Q: Between Guidehouse company and ERM company, which one has experienced at least one ransomware attack ?

Neither ERM company nor Guidehouse company has reported experiencing a ransomware attack publicly.

Q: Between Guidehouse company and ERM company, which one has experienced at least one data breach ?

Neither ERM company nor Guidehouse company has reported experiencing a data breach publicly.

Q: Between Guidehouse company and ERM company, which one has experienced at least one targeted cyberattack ?

Guidehouse company has reported targeted cyberattacks, while ERM company has not reported such incidents publicly.

Q: Between Guidehouse company and ERM company, which one has experienced at least one vulnerability ?

Neither Guidehouse company nor ERM company has reported experiencing or disclosing vulnerabilities publicly.

Q: Between Guidehouse company and ERM company, which one holds the most compliance certifications ?

Neither Guidehouse nor ERM holds any compliance certifications.

Q: Between Guidehouse company and ERM company, which one has the most subsidiaries ?

Both ERM company and Guidehouse company have a similar number of subsidiaries worldwide.

Guidehouse

1676 International Dr, McLean, Virginia, 22102, US

Last Update: 2025-12-09

View Profile

Between 750 and 799

https://www.guidehouse.com

Guidehouse is a global consultancy providing advisory, technology, and managed services to the commercial and public sectors. Guidehouse is purpose-built to serve the national security, financial services, healthcare, energy, and infrastructure industries. Disrupting legacy consulting delivery models with its agility, capabilities, and scale, the firm delivers technology-enabled and focused solutions that position clients for innovation, resilience, and growth. With high-quality standards and a relentless pursuit of client success, Guidehouse’s more than 18,000 employees collaborate with leaders to outwit complexity and achieve transformational changes that meaningfully shape the future.

NAICS: 5416

NAICS Definition: Management, Scientific, and Technical Consulting Services

Employees: 14,743

Subsidiaries: 7

12-month incidents

0

Known data breaches

0

Attack type number

1

View Profile

ERM

33 St Mary Axe, London, GB, EC3A 8AA

Last Update: 2025-12-09

Between 750 and 799

http://www.erm.com

Sustainability is our business. As the world’s largest specialist sustainability consultancy, ERM partners with clients to operationalize sustainability at pace and scale, deploying a unique combination of strategic transformation and technical delivery capabilities. This approach helps clients to accelerate the integration of sustainability at every level of their business. With more than 50 years of experience, ERM’s diverse team of 8000+ experts in 40 countries and territories helps clients create innovative solutions to their sustainability challenges, unlocking commercial opportunities that meet the needs of today while preserving opportunity for future generations.

NAICS: 5416

NAICS Definition: Management, Scientific, and Technical Consulting Services

Employees: 10,020

Subsidiaries: 7

12-month incidents

0

Known data breaches

0

Attack type number

0

Guidehouse

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

https://images.rankiteo.com/companyimages/erm.jpeg

ERM

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Business Consulting and Services Industry Average (This Year)

No incidents recorded for Guidehouse in 2025.

Incidents vs Business Consulting and Services Industry Average (This Year)

No incidents recorded for ERM in 2025.

Incident History — Guidehouse (X = Date, Y = Severity)

Guidehouse cyber incidents detection timeline including parent company and subsidiaries

Incident History — ERM (X = Date, Y = Severity)

ERM cyber incidents detection timeline including parent company and subsidiaries

Guidehouse

Incidents

Date Detected: 1/2021

Type:Cyber Attack

Blog: Blog

ERM

Incidents

No Incident

ERM company demonstrates a stronger AI Cybersecurity Score compared to Guidehouse company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Guidehouse company has historically faced a number of disclosed cyber incidents, whereas ERM company has not reported any.

In the current year, ERM company and Guidehouse company have not reported any cyber incidents.

Neither ERM company nor Guidehouse company has reported experiencing a ransomware attack publicly.

Neither ERM company nor Guidehouse company has reported experiencing a data breach publicly.

Guidehouse company has reported targeted cyberattacks, while ERM company has not reported such incidents publicly.

Neither Guidehouse company nor ERM company has reported experiencing or disclosing vulnerabilities publicly.

Neither Guidehouse nor ERM holds any compliance certifications.

Neither company holds any compliance certifications.

Both ERM company and Guidehouse company have a similar number of subsidiaries worldwide.

Guidehouse company employs more people globally than ERM company, reflecting its scale as a Business Consulting and Services.

Neither Guidehouse nor ERM holds SOC 2 Type 1 certification.

Neither Guidehouse nor ERM holds SOC 2 Type 2 certification.

Neither Guidehouse nor ERM holds ISO 27001 certification.

Neither Guidehouse nor ERM holds PCI DSS certification.

Neither Guidehouse nor ERM holds HIPAA certification.

Neither Guidehouse nor ERM holds GDPR certification.

Description

Hitachi Vantara Pentaho Data Integration and Analytics Community Dashboard Framework prior to versions 10.2.0.4, including 9.3.0.x and 8.3.x display the full server stack trace when encountering an error within the GetCdfResource servlet.

Published

Date

2025-12-15

Updated

Date

2025-12-15

Risk Information

cvss3

Base: 5.3

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

References

https://support.pentaho.com/hc/en-us/articles/41833799577741--Resolved-Hitachi-Vantara-Pentaho-Business-Analytics-Server-Generation-of-Error-Message-Containing-Sensitive-Information-Versions-before-10-2-0-4-Impacted-CVE-2025-9122

Description

Pentaho Data Integration and Analytics Community Dashboard Editor plugin versions before 10.2.0.4, including 9.3.0.x and 8.3.x, deserialize untrusted JSON data without constraining the parser to approved classes and methods.

Published

Date

2025-12-15

Updated

Date

2025-12-15

Risk Information

cvss3

Base: 8.8

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References

https://support.pentaho.com/hc/en-us/articles/41832536185613--Resolved-Hitachi-Vantara-Pentaho-Business-Analytics-Server-Deserialization-of-Untrusted-Data-Versions-before-10-2-0-4-Impacted-CVE-2025-9121

Description

A security flaw has been discovered in CTCMS Content Management System up to 2.1.2. The impacted element is an unknown function in the library /ctcms/libs/Ct_Config.php of the component Backend System Configuration Module. The manipulation of the argument Cj_Add/Cj_Edit results in code injection. The attack can be executed remotely. The exploit has been released to the public and may be exploited.

Published

Date

2025-12-15

Updated

Date

2025-12-15

Risk Information

cvss2

Base: 5.8

Severity: LOW

AV:N/AC:L/Au:M/C:P/I:P/A:P

cvss3

Base: 4.7

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

cvss4

Base: 5.1

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

A vulnerability was identified in CTCMS Content Management System up to 2.1.2. The affected element is the function Save of the file /ctcms/libs/Ct_App.php of the component Backend App Configuration Module. The manipulation of the argument CT_App_Paytype leads to code injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.

Published

Date

2025-12-15

Updated

Date

2025-12-15

Risk Information

cvss2

Base: 5.8

Severity: LOW

AV:N/AC:L/Au:M/C:P/I:P/A:P

cvss3

Base: 4.7

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

cvss4

Base: 5.1

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

Weblate is a web based localization tool. In versions prior to 5.15, it was possible to accept an invitation opened by a different user. Version 5.15. contains a patch. As a workaround, avoid leaving one's Weblate sessions with an invitation opened unattended.

Published

Date

2025-12-15

Updated

Date

2025-12-15

Risk Information

cvss4

Base: 1.0

Severity: HIGH

CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Guidehouse

VS

ERM

Guidehouse

ERM

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Business Consulting and Services Industry Average (This Year)

Incidents vs Business Consulting and Services Industry Average (This Year)

Incident History — Guidehouse (X = Date, Y = Severity)

Incident History — ERM (X = Date, Y = Severity)

Notable Incidents

No Incident

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2025-9122

Risk Information

CVE-2025-9121

Risk Information

CVE-2025-14730

Risk Information

CVE-2025-14729

Risk Information

CVE-2025-64725

Risk Information

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Guidehouse

VS

ERM

Guidehouse

ERM

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Business Consulting and Services Industry Average (This Year)

Incidents vs Business Consulting and Services Industry Average (This Year)

Incident History — Guidehouse (X = Date, Y = Severity)

Incident History — ERM (X = Date, Y = Severity)

Notable Incidents

🔒 Incident : Cyber Attack GUI125072725

No Incident

FAQ

Between Guidehouse company and ERM company, which one has the best AI Cybersecurity Score ?

Between Guidehouse company and ERM company, which one has experienced more cyber incidents in the past ?

Between Guidehouse company and ERM company, which one has experienced more cyber incidents this year ?

Between Guidehouse company and ERM company, which one has experienced at least one ransomware attack ?

Between Guidehouse company and ERM company, which one has experienced at least one data breach ?

Between Guidehouse company and ERM company, which one has experienced at least one targeted cyberattack ?

Between Guidehouse company and ERM company, which one has experienced at least one vulnerability ?

Between Guidehouse company and ERM company, which one holds the most compliance certifications ?

Between Guidehouse company and ERM company, which one holds the fewest compliance certifications ?

Between Guidehouse company and ERM company, which one has the most subsidiaries ?

Between Guidehouse company and ERM company, which one has the largest number of employees ?

Between Guidehouse and ERM, which company holds both SOC 2 Type 1 certifications ?

Between Guidehouse and ERM, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — Guidehouse or ERM ?

Which company is PCI DSS compliant — Guidehouse or ERM ?

Between Guidehouse and ERM, which company complies with HIPAA regulations for healthcare data ?

Between Guidehouse and ERM, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2025-9122

Risk Information

CVE-2025-9121

Risk Information

CVE-2025-14730

Risk Information

CVE-2025-14729

Risk Information

CVE-2025-64725

Risk Information