Comparison Overview

Heritage Metalworks, LLC

VS

Global Components UK LTD

Heritage Metalworks, LLC

2089 Bondsville Rd, Downingtown, PA, 19335, US
Last Update: 2025-11-26
View Profile
Between 750 and 799
https://hmwpa.com

Heritage Metalworks is an award-winning foundry, blacksmith shop and metal fabricator of signature lighting, authentic hardware, and architectural metalwork. Since 2001, Heritage Metalworks has offered concept design, construction logistics and prototype development for some of the most exclusive architects, designers, general contractors, galleries and museums in the country. With three signature handcrafted brands and our unsurpassed custom expertise, the design possibilities are endless. Our Heritage Traditions Lighting line includes nearly 100 transitional lighting designs made up of recreations, reproductions, and adaptions through various periods of our history. The Scofield Lighting line was founded by master craftsman, Richard Scofield in 1974. Today, over 120 historically inspired transitional lighting designs are handcrafted in house with unlimited personalization options Our HMW Forge Hardware line featuring over 350 period-specific hand forged and cast brass hardware designs. Each piece is crafted by our highly skilled metalsmiths with the trade finesse and mechanical know-how to make exceptionally durable and timeless hardware for cabinet, door, barn, and shutter projects. Period or modern inspired, when it comes to metal, we accept the challenge, ensuring craftsmanship and attention to detail is the highest priority.

NAICS: 337
NAICS Definition: Furniture and Related Product Manufacturing
Employees: 7
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

Global Components UK LTD

Greenfield Mills, OSSETT, West Yorkshire, undefined, GB
Last Update: 2025-11-22
Between 750 and 799
http://www.gc-uk.com

Global Components (UK) Ltd was formed in October 2002, a leading supplier of key components for the bedding and upholstery industry offering cost effective, innovative quality products together with excellent service to the bedding and furniture industry. In 2014 the company invested a significant amount of money in acquiring a much larger warehousing facility based in Ossett, West Yorkshire. Our NEW site consists of almost 80,000 SQ FT, with a large warehousing facility for our vast range of products in which we hold stock and distribute in excess of 200 bedding, packaging and upholstery related products to include mattress components, Divan components, Headboard components, Mattress ticking - upholstery fabrics and also mattress covers. Global Components also offers high quality cost effective packaging to protect all types of furniture and bedding products from soiling, scuffing and scratching especially during storage and transportation. These products include: mattress bags, cardboard corner protectors, packaging tapes and cardboard boxes. We work alongside our international partners to ensure we can supply a wide range of high quality products and services at the most economical prices. Global Components also have our own fleet of vehicles to ensure we can meet your delivery expectations and production schedules. Global Components would welcome the opportunity in fulfilling any requirements with a first class service together with competitive pricing.

NAICS: 337
NAICS Definition: Furniture and Related Product Manufacturing
Employees: 5
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/heritage-metalworks-ltd..jpeg
Heritage Metalworks, LLC
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/global-components-uk-ltd.jpeg
Global Components UK LTD
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Heritage Metalworks, LLC
100%
Compliance Rate
0/4 Standards Verified
Global Components UK LTD
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Furniture and Home Furnishings Manufacturing Industry Average (This Year)

No incidents recorded for Heritage Metalworks, LLC in 2025.

Incidents vs Furniture and Home Furnishings Manufacturing Industry Average (This Year)

No incidents recorded for Global Components UK LTD in 2025.

Incident History — Heritage Metalworks, LLC (X = Date, Y = Severity)

Heritage Metalworks, LLC cyber incidents detection timeline including parent company and subsidiaries

Incident History — Global Components UK LTD (X = Date, Y = Severity)

Global Components UK LTD cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/heritage-metalworks-ltd..jpeg
Heritage Metalworks, LLC
Incidents

No Incident

https://images.rankiteo.com/companyimages/global-components-uk-ltd.jpeg
Global Components UK LTD
Incidents

No Incident

FAQ

Heritage Metalworks, LLC company demonstrates a stronger AI Cybersecurity Score compared to Global Components UK LTD company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, Global Components UK LTD company has disclosed a higher number of cyber incidents compared to Heritage Metalworks, LLC company.

In the current year, Global Components UK LTD company and Heritage Metalworks, LLC company have not reported any cyber incidents.

Neither Global Components UK LTD company nor Heritage Metalworks, LLC company has reported experiencing a ransomware attack publicly.

Neither Global Components UK LTD company nor Heritage Metalworks, LLC company has reported experiencing a data breach publicly.

Neither Global Components UK LTD company nor Heritage Metalworks, LLC company has reported experiencing targeted cyberattacks publicly.

Neither Heritage Metalworks, LLC company nor Global Components UK LTD company has reported experiencing or disclosing vulnerabilities publicly.

Neither Heritage Metalworks, LLC nor Global Components UK LTD holds any compliance certifications.

Neither company holds any compliance certifications.

Neither Heritage Metalworks, LLC company nor Global Components UK LTD company has publicly disclosed detailed information about the number of their subsidiaries.

Heritage Metalworks, LLC company employs more people globally than Global Components UK LTD company, reflecting its scale as a Furniture and Home Furnishings Manufacturing.

Neither Heritage Metalworks, LLC nor Global Components UK LTD holds SOC 2 Type 1 certification.

Neither Heritage Metalworks, LLC nor Global Components UK LTD holds SOC 2 Type 2 certification.

Neither Heritage Metalworks, LLC nor Global Components UK LTD holds ISO 27001 certification.

Neither Heritage Metalworks, LLC nor Global Components UK LTD holds PCI DSS certification.

Neither Heritage Metalworks, LLC nor Global Components UK LTD holds HIPAA certification.

Neither Heritage Metalworks, LLC nor Global Components UK LTD holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

ThingsBoard in versions prior to v4.2.1 allows an authenticated user to upload malicious SVG images via the "Image Gallery", leading to a Stored Cross-Site Scripting (XSS) vulnerability. The exploit can be triggered when any user accesses the public API endpoint of the malicious SVG images, or if the malicious images are embedded in an `iframe` element, during a widget creation, deployed to any page of the platform (e.g., dashboards), and accessed during normal operations. The vulnerability resides in the `ImageController`, which fails to restrict the execution of JavaScript code when an image is loaded by the user's browser. This vulnerability can lead to the execution of malicious code in the context of other users' sessions, potentially compromising their accounts and allowing unauthorized actions.

Published
Date
2025-11-27
Updated
Date
2025-11-27
Risk Information
cvss4
Base: 6.2
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:H/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to to verify that the token used during the code exchange originates from the same authentication flow, which allows an authenticated user to perform account takeover via a specially crafted email address used when switching authentication methods and sending a request to the /users/login/sso/code-exchange endpoint. The vulnerability requires ExperimentalEnableAuthenticationTransfer to be enabled (default: enabled) and RequireEmailVerification to be disabled (default: disabled).

Published
Date
2025-11-27
Updated
Date
2025-11-27
Risk Information
cvss3
Base: 9.9
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
References
Description

Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to sanitize team email addresses to be visible only to Team Admins, which allows any authenticated user to view team email addresses via the GET /api/v4/channels/{channel_id}/common_teams endpoint

Published
Date
2025-11-27
Updated
Date
2025-11-27
Risk Information
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
References
Description

Exposure of email service credentials to users without administrative rights in Devolutions Server.This issue affects Devolutions Server: before 2025.2.21, before 2025.3.9.

Published
Date
2025-11-27
Updated
Date
2025-11-27
References
Description

Exposure of credentials in unintended requests in Devolutions Server.This issue affects Server: through 2025.2.20, through 2025.3.8.

Published
Date
2025-11-27
Updated
Date
2025-11-27
References