Comparison Overview

Heinrich-Heine-Universität Düsseldorf

VS

EPFL

Heinrich-Heine-Universität Düsseldorf

Heinrich-Heine-University Düsseldorf, Universitätsstr. 1, Düsseldorf, Nordrhein-Westfalen, 40225, DE
Last Update: 2025-12-10
View Profile
Between 700 and 749
http://www.hhu.de

Heinrich Heine University Düsseldorf (HHU) is one of the younger higher education institutions in the state of North Rhine-Westphalia – founded in 1965. Since 1988 the university has carried the name of one of the city’s finest sons. Today around 35,000 students study at a modern campus under conditions ideally suited to academic life. As a campus university where everything is close together, all buildings including the University Hospital and the libraries are easily reachable. The university departments enjoy an excellent reputation due to a high number of collaborative research centres. Moreover, the state capital Düsseldorf provides an attractive environment with a high quality of life. Today, the HHU sees itself as a civic university ("Bürgeruniversität"​). This characterization and mission is shaped by urban events and close proximity to the citizens, but also by the great commitment of individual citizens of Düsseldorf to the HHU.

NAICS: None
NAICS Definition: Others
Employees: 3,577
Subsidiaries: 2
12-month incidents
0
Known data breaches
0
Attack type number
2
View Profile

EPFL

Route Cantonale, Lausanne, Vaud, 1015, CH
Last Update: 2025-12-15
Between 750 and 799
http://www.epfl.ch/

EPFL (Ecole Polytechnique Fédérale de Lausanne) is one of two Swiss Federal Institutes of Technology. Its location on the shores of Lake Geneva, EPFL brings together a campus of more than 10,000 people. By its novel structure, the school stimulates collaboration between students, professors, researchers and entrepreneurs. These daily interactions give rise to new and groundbreaking work in science, technology and architecture.

NAICS: None
NAICS Definition: Others
Employees: 7,322
Subsidiaries: 22
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/heinrich-heine-universitat-dusseldorf.jpeg
Heinrich-Heine-Universität Düsseldorf
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/epfl.jpeg
EPFL
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Heinrich-Heine-Universität Düsseldorf
100%
Compliance Rate
0/4 Standards Verified
EPFL
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Hochschulen und Universitäten Industry Average (This Year)

No incidents recorded for Heinrich-Heine-Universität Düsseldorf in 2025.

Incidents vs Hochschulen und Universitäten Industry Average (This Year)

No incidents recorded for EPFL in 2025.

Incident History — Heinrich-Heine-Universität Düsseldorf (X = Date, Y = Severity)

Heinrich-Heine-Universität Düsseldorf cyber incidents detection timeline including parent company and subsidiaries

Incident History — EPFL (X = Date, Y = Severity)

EPFL cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/heinrich-heine-universitat-dusseldorf.jpeg
Heinrich-Heine-Universität Düsseldorf
Incidents

Date Detected: 02/2023
Type:Data Leak
Attack Vector: Server Vulnerability
Blog: Blog

Date Detected: 9/2020
Type:Cyber Attack
Attack Vector: Encryption of network systems
Blog: Blog
https://images.rankiteo.com/companyimages/epfl.jpeg
EPFL
Incidents

No Incident

FAQ

EPFL company demonstrates a stronger AI Cybersecurity Score compared to Heinrich-Heine-Universität Düsseldorf company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Heinrich-Heine-Universität Düsseldorf company has historically faced a number of disclosed cyber incidents, whereas EPFL company has not reported any.

In the current year, EPFL company and Heinrich-Heine-Universität Düsseldorf company have not reported any cyber incidents.

Neither EPFL company nor Heinrich-Heine-Universität Düsseldorf company has reported experiencing a ransomware attack publicly.

Neither EPFL company nor Heinrich-Heine-Universität Düsseldorf company has reported experiencing a data breach publicly.

Heinrich-Heine-Universität Düsseldorf company has reported targeted cyberattacks, while EPFL company has not reported such incidents publicly.

Neither Heinrich-Heine-Universität Düsseldorf company nor EPFL company has reported experiencing or disclosing vulnerabilities publicly.

Neither Heinrich-Heine-Universität Düsseldorf nor EPFL holds any compliance certifications.

Neither company holds any compliance certifications.

EPFL company has more subsidiaries worldwide compared to Heinrich-Heine-Universität Düsseldorf company.

EPFL company employs more people globally than Heinrich-Heine-Universität Düsseldorf company, reflecting its scale as a Hochschulen und Universitäten.

Neither Heinrich-Heine-Universität Düsseldorf nor EPFL holds SOC 2 Type 1 certification.

Neither Heinrich-Heine-Universität Düsseldorf nor EPFL holds SOC 2 Type 2 certification.

Neither Heinrich-Heine-Universität Düsseldorf nor EPFL holds ISO 27001 certification.

Neither Heinrich-Heine-Universität Düsseldorf nor EPFL holds PCI DSS certification.

Neither Heinrich-Heine-Universität Düsseldorf nor EPFL holds HIPAA certification.

Neither Heinrich-Heine-Universität Düsseldorf nor EPFL holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

Hitachi Vantara Pentaho Data Integration and Analytics Community Dashboard Framework prior to versions 10.2.0.4, including 9.3.0.x and 8.3.x display the full server stack trace when encountering an error within the GetCdfResource servlet.

Published
Date
2025-12-15
Updated
Date
2025-12-15
Risk Information
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
References
Description

Pentaho Data Integration and Analytics Community Dashboard Editor plugin versions before 10.2.0.4, including 9.3.0.x and 8.3.x, deserialize untrusted JSON data without constraining the parser to approved classes and methods.

Published
Date
2025-12-15
Updated
Date
2025-12-15
Risk Information
cvss3
Base: 8.8
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
References
Description

A security flaw has been discovered in CTCMS Content Management System up to 2.1.2. The impacted element is an unknown function in the library /ctcms/libs/Ct_Config.php of the component Backend System Configuration Module. The manipulation of the argument Cj_Add/Cj_Edit results in code injection. The attack can be executed remotely. The exploit has been released to the public and may be exploited.

Published
Date
2025-12-15
Updated
Date
2025-12-15
Risk Information
cvss2
Base: 5.8
Severity: LOW
AV:N/AC:L/Au:M/C:P/I:P/A:P
cvss3
Base: 4.7
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.1
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was identified in CTCMS Content Management System up to 2.1.2. The affected element is the function Save of the file /ctcms/libs/Ct_App.php of the component Backend App Configuration Module. The manipulation of the argument CT_App_Paytype leads to code injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.

Published
Date
2025-12-15
Updated
Date
2025-12-15
Risk Information
cvss2
Base: 5.8
Severity: LOW
AV:N/AC:L/Au:M/C:P/I:P/A:P
cvss3
Base: 4.7
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.1
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Weblate is a web based localization tool. In versions prior to 5.15, it was possible to accept an invitation opened by a different user. Version 5.15. contains a patch. As a workaround, avoid leaving one's Weblate sessions with an invitation opened unattended.

Published
Date
2025-12-15
Updated
Date
2025-12-15
Risk Information
cvss4
Base: 1.0
Severity: HIGH
CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References