Comparison Overview

Q: Between HashiCorp company and PedidosYa company, which one has the best AI Cybersecurity Score ?

PedidosYa company demonstrates a stronger AI Cybersecurity Score compared to HashiCorp company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Q: Between HashiCorp company and PedidosYa company, which one has experienced more cyber incidents in the past ?

HashiCorp company has historically faced a number of disclosed cyber incidents, whereas PedidosYa company has not reported any.

Q: Between HashiCorp company and PedidosYa company, which one has experienced more cyber incidents this year ?

In the current year, HashiCorp company has reported more cyber incidents than PedidosYa company.

Q: Between HashiCorp company and PedidosYa company, which one has experienced at least one ransomware attack ?

Neither PedidosYa company nor HashiCorp company has reported experiencing a ransomware attack publicly.

Q: Between HashiCorp company and PedidosYa company, which one has experienced at least one data breach ?

Neither PedidosYa company nor HashiCorp company has reported experiencing a data breach publicly.

Q: Between HashiCorp company and PedidosYa company, which one has experienced at least one targeted cyberattack ?

Neither PedidosYa company nor HashiCorp company has reported experiencing targeted cyberattacks publicly.

Q: Between HashiCorp company and PedidosYa company, which one has experienced at least one vulnerability ?

HashiCorp company has disclosed at least one vulnerability, while PedidosYa company has not reported such incidents publicly.

Q: Between HashiCorp company and PedidosYa company, which one holds the most compliance certifications ?

Neither HashiCorp nor PedidosYa holds any compliance certifications.

Q: Between HashiCorp company and PedidosYa company, which one has the most subsidiaries ?

PedidosYa company has more subsidiaries worldwide compared to HashiCorp company.

HashiCorp

101 2nd St, None, San Francisco, California, US, 94105

Last Update: 2025-12-10

View Profile

Between 750 and 799

http://www.hashicorp.com

At HashiCorp, we believe infrastructure enables innovation, and we are helping organizations to operate that infrastructure in the cloud. Our suite of multi-cloud infrastructure automation products — all with open source projects at their core — underpin the most important applications for the largest enterprises in the world. As part of the once-in-a-generation shift to the cloud, organizations of all sizes, from well-known brands to ambitious start-ups, rely on our solutions to provision, secure, connect, and run their business-critical applications so they can deliver essential services, communications tools, and entertainment platforms worldwide.

NAICS: 5112

NAICS Definition: Software Publishers

Employees: 2,516

Subsidiaries: 0

12-month incidents

1

Known data breaches

0

Attack type number

1

View Profile

PedidosYa

La Cumparsita 1475, 11200 Montevideo, Departamento de Montevideo, Montevideo, Montevideo, UY, 11200

Last Update: 2025-12-09

Between 750 and 799

https://empleos.pedidosya.com/

We’re the delivery market leader in Latin America. Our platform connects over 77.000 restaurants, supermarkets, pharmacies and stores with millions of users. Nowadays we operate in more than 500 cities in Latinamerica. And we are now over 3.400 employees. PedidosYa is available for iOS, Android and Windows Phone operating systems and downloads are now over 20 million.

NAICS: 5112

NAICS Definition: Software Publishers

Employees: 13,301

Subsidiaries: 4

12-month incidents

0

Known data breaches

0

Attack type number

0

HashiCorp

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

PedidosYa

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Software Development Industry Average (This Year)

HashiCorp has 132.56% more incidents than the average of same-industry companies with at least one recorded incident.

Incidents vs Software Development Industry Average (This Year)

No incidents recorded for PedidosYa in 2025.

Incident History — HashiCorp (X = Date, Y = Severity)

HashiCorp cyber incidents detection timeline including parent company and subsidiaries

Incident History — PedidosYa (X = Date, Y = Severity)

PedidosYa cyber incidents detection timeline including parent company and subsidiaries

HashiCorp

Incidents

Date Detected: 6/2025

Type:Vulnerability

Attack Vector: Privileged Vault operator access with write permissions to sys/audit endpoint

Blog: Blog

PedidosYa

Incidents

No Incident

PedidosYa company demonstrates a stronger AI Cybersecurity Score compared to HashiCorp company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

HashiCorp company has historically faced a number of disclosed cyber incidents, whereas PedidosYa company has not reported any.

In the current year, HashiCorp company has reported more cyber incidents than PedidosYa company.

Neither PedidosYa company nor HashiCorp company has reported experiencing a ransomware attack publicly.

Neither PedidosYa company nor HashiCorp company has reported experiencing a data breach publicly.

Neither PedidosYa company nor HashiCorp company has reported experiencing targeted cyberattacks publicly.

HashiCorp company has disclosed at least one vulnerability, while PedidosYa company has not reported such incidents publicly.

Neither HashiCorp nor PedidosYa holds any compliance certifications.

Neither company holds any compliance certifications.

PedidosYa company has more subsidiaries worldwide compared to HashiCorp company.

PedidosYa company employs more people globally than HashiCorp company, reflecting its scale as a Software Development.

Neither HashiCorp nor PedidosYa holds SOC 2 Type 1 certification.

Neither HashiCorp nor PedidosYa holds SOC 2 Type 2 certification.

Neither HashiCorp nor PedidosYa holds ISO 27001 certification.

Neither HashiCorp nor PedidosYa holds PCI DSS certification.

Neither HashiCorp nor PedidosYa holds HIPAA certification.

Neither HashiCorp nor PedidosYa holds GDPR certification.

Description

Tuleap is a free and open source suite for management of software development and collaboration. Versions of Tuleap Community Edition prior to 17.0.99.1763126988 and Tuleap Enterprise Edition prior to 17.0-3 and 16.13-8 have missing CSRF protections which allow attackers to create or remove tracker triggers. This issue is fixed in Tuleap Community Edition version 17.0.99.1763126988 and Tuleap Enterprise Edition versions 17.0-3 and 16.13-8.

Published

Date

2025-12-08

Updated

Date

2025-12-08

Risk Information

cvss3

Base: 4.6

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L

References

Description

Tuleap is a free and open source suite for management of software development and collaboration. Tuleap Community Editon versions prior to 17.0.99.1762456922 and Tuleap Enterprise Edition versions prior to 17.0-2, 16.13-7 and 16.12-10 are vulnerable to CSRF attacks through planning management API. Attackers have access to create, edit or remove plans. This issue is fixed in Tuleap Community Edition version 17.0.99.1762456922 and Tuleap Enterprise Edtion versions 17.0-2, 16.13-7 and 16.12-10.

Published

Date

2025-12-08

Updated

Date

2025-12-08

Risk Information

cvss3

Base: 4.6

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L

References

Description

Tuleap is an Open Source Suite for management of software development and collaboration. Tuleap Community Edition versions below 17.0.99.1762444754 and Tuleap Enterprise Edition versions prior to 17.0-2, 16.13-7 and 16.12-10 allow attackers trick victims into changing tracker general settings. This issue is fixed in version Tuleap Community Edition version 17.0.99.1762444754 and Tuleap Enterprise Edition versions 17.0-2, 16.13-7 and 16.12-10.

Published

Date

2025-12-08

Updated

Date

2025-12-08

Risk Information

cvss3

Base: 4.6

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L

References

Description

Tuleap is an Open Source Suite for management of software development and collaboration. Versions below 17.0.99.1762431347 of Tuleap Community Edition and Tuleap Enterprise Edition below 17.0-2, 16.13-7 and 16.12-10 allow attackers to access file release system information in projects they do not have access to. This issue is fixed in version 17.0.99.1762431347 of the Tuleap Community Edition and versions 17.0-2, 16.13-7 and 16.12-10 of Tuleap Enterprise Edition.

Published

Date

2025-12-08

Updated

Date

2025-12-08

Risk Information

cvss3

Base: 6.5

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

References

Description

IBM watsonx.data 2.2 through 2.2.1 could allow an authenticated user to cause a denial of service through ingestion pods due to improper allocation of resources without limits.

Published

Date

2025-12-08

Updated

Date

2025-12-08

Risk Information

cvss3

Base: 6.5

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

References

https://www.ibm.com/support/pages/node/7253932

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

HashiCorp

VS

PedidosYa

HashiCorp

PedidosYa

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Software Development Industry Average (This Year)

Incidents vs Software Development Industry Average (This Year)

Incident History — HashiCorp (X = Date, Y = Severity)

Incident History — PedidosYa (X = Date, Y = Severity)

Notable Incidents

No Incident

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2025-64760

Risk Information

CVE-2025-64499

Risk Information

CVE-2025-64498

Risk Information

CVE-2025-64497

Risk Information

CVE-2025-36140

Risk Information

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

HashiCorp

VS

PedidosYa

HashiCorp

PedidosYa

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Software Development Industry Average (This Year)

Incidents vs Software Development Industry Average (This Year)

Incident History — HashiCorp (X = Date, Y = Severity)

Incident History — PedidosYa (X = Date, Y = Severity)

Notable Incidents

🔒 Incident : Vulnerability HAS731080425

No Incident

FAQ

Between HashiCorp company and PedidosYa company, which one has the best AI Cybersecurity Score ?

Between HashiCorp company and PedidosYa company, which one has experienced more cyber incidents in the past ?

Between HashiCorp company and PedidosYa company, which one has experienced more cyber incidents this year ?

Between HashiCorp company and PedidosYa company, which one has experienced at least one ransomware attack ?

Between HashiCorp company and PedidosYa company, which one has experienced at least one data breach ?

Between HashiCorp company and PedidosYa company, which one has experienced at least one targeted cyberattack ?

Between HashiCorp company and PedidosYa company, which one has experienced at least one vulnerability ?

Between HashiCorp company and PedidosYa company, which one holds the most compliance certifications ?

Between HashiCorp company and PedidosYa company, which one holds the fewest compliance certifications ?

Between HashiCorp company and PedidosYa company, which one has the most subsidiaries ?

Between HashiCorp company and PedidosYa company, which one has the largest number of employees ?

Between HashiCorp and PedidosYa, which company holds both SOC 2 Type 1 certifications ?

Between HashiCorp and PedidosYa, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — HashiCorp or PedidosYa ?

Which company is PCI DSS compliant — HashiCorp or PedidosYa ?

Between HashiCorp and PedidosYa, which company complies with HIPAA regulations for healthcare data ?

Between HashiCorp and PedidosYa, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2025-64760

Risk Information

CVE-2025-64499

Risk Information

CVE-2025-64498

Risk Information

CVE-2025-64497

Risk Information

CVE-2025-36140

Risk Information