Comparison Overview

La La La Human Steps

VS

ValeFest

La La La Human Steps

5655, avenue du Parc, bureau 206, Montréal, H2V 4H2, CA
Last Update: 2025-12-10
View Profile
Between 750 and 799
http://www.lalalahumansteps.com

Compagnie de danse contemporaine, fondée à Montréal par Édouard Lock en 1980, La La La Human Steps a présenté une douzaine de spectacles un peu partout dans le monde. La La La Human Steps a collaboré, entre autres, avec l’Opéra de Paris, David Bowie et Frank Zappa. Ses oeuvres ont reçu de nombreuses récompenses. / Contemporary dance company founded by Edouard Lock, based in Montreal, La La La Human Steps has presented a dozen shows around the world. La La La Human Steps has collaborated, among others, with the Paris Opera, David Bowie and Frank Zappa. His works have received numerous awards.

NAICS: 7111
NAICS Definition: Performing Arts Companies
Employees: 19
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

ValeFest

Vale Festival, University of Birmingham Guild of Students, Edgbaston Park Road, Birmingham, B15 2TU, GB
Last Update: 2025-12-13
Between 750 and 799
https://www.guildofstudents.com/studentgroups/societies/valefestival/

​ValeFest is a student society which works with the Guild of Students to organise a music festival held every June for the past 20 years! We aim to support local artists and charities, while creating a community with a shared love of music. Previous headliners have included Overpass, Biig Piig and The Hunna, with musicians such as General Levy, Disrupta, Swim School and many local Birmingham bands such as Eighty Eight Miles also playing. We support local charities, businesses and musicians while providing live music and entertainment in and around the UoB area! We also go on socials to local gigs so if you're interested in live music and just want some friends to go with, Valefest is the place for you! If you would like to join our committee and gain experience in the music and event industry whilst learning news skills in all aspects, from marketing, to business, booking artists, then this is the society for you. We’d love to have you join! If you have any questions contact us by Email: [email protected] Instagram DM: @valefestival

NAICS: 7111
NAICS Definition: Performing Arts Companies
Employees: 3
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/la-la-la-human-steps.jpeg
La La La Human Steps
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/vale-fest.jpeg
ValeFest
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
La La La Human Steps
100%
Compliance Rate
0/4 Standards Verified
ValeFest
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Performing Arts Industry Average (This Year)

No incidents recorded for La La La Human Steps in 2025.

Incidents vs Performing Arts Industry Average (This Year)

No incidents recorded for ValeFest in 2025.

Incident History — La La La Human Steps (X = Date, Y = Severity)

La La La Human Steps cyber incidents detection timeline including parent company and subsidiaries

Incident History — ValeFest (X = Date, Y = Severity)

ValeFest cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/la-la-la-human-steps.jpeg
La La La Human Steps
Incidents

No Incident

https://images.rankiteo.com/companyimages/vale-fest.jpeg
ValeFest
Incidents

No Incident

FAQ

La La La Human Steps company demonstrates a stronger AI Cybersecurity Score compared to ValeFest company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, ValeFest company has disclosed a higher number of cyber incidents compared to La La La Human Steps company.

In the current year, ValeFest company and La La La Human Steps company have not reported any cyber incidents.

Neither ValeFest company nor La La La Human Steps company has reported experiencing a ransomware attack publicly.

Neither ValeFest company nor La La La Human Steps company has reported experiencing a data breach publicly.

Neither ValeFest company nor La La La Human Steps company has reported experiencing targeted cyberattacks publicly.

Neither La La La Human Steps company nor ValeFest company has reported experiencing or disclosing vulnerabilities publicly.

Neither La La La Human Steps nor ValeFest holds any compliance certifications.

Neither company holds any compliance certifications.

Neither La La La Human Steps company nor ValeFest company has publicly disclosed detailed information about the number of their subsidiaries.

La La La Human Steps company employs more people globally than ValeFest company, reflecting its scale as a Performing Arts.

Neither La La La Human Steps nor ValeFest holds SOC 2 Type 1 certification.

Neither La La La Human Steps nor ValeFest holds SOC 2 Type 2 certification.

Neither La La La Human Steps nor ValeFest holds ISO 27001 certification.

Neither La La La Human Steps nor ValeFest holds PCI DSS certification.

Neither La La La Human Steps nor ValeFest holds HIPAA certification.

Neither La La La Human Steps nor ValeFest holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

NXLog Agent before 6.11 can load a file specified by the OPENSSL_CONF environment variable.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 8.1
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
References
Description

uriparser through 0.9.9 allows unbounded recursion and stack consumption, as demonstrated by ParseMustBeSegmentNzNc with large input containing many commas.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 2.9
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
References
Description

A vulnerability was detected in Mayan EDMS up to 4.10.1. The affected element is an unknown function of the file /authentication/. The manipulation results in cross site scripting. The attack may be performed from remote. The exploit is now public and may be used. Upgrading to version 4.10.2 is sufficient to fix this issue. You should upgrade the affected component. The vendor confirms that this is "[f]ixed in version 4.10.2". Furthermore, that "[b]ackports for older versions in process and will be out as soon as their respective CI pipelines complete."

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss2
Base: 5.0
Severity: LOW
AV:N/AC:L/Au:N/C:N/I:P/A:N
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

MJML through 4.18.0 allows mj-include directory traversal to test file existence and (in the type="css" case) read files. NOTE: this issue exists because of an incomplete fix for CVE-2020-12827.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 4.5
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:L
References
Description

A half-blind Server Side Request Forgery (SSRF) vulnerability exists in kube-controller-manager when using the in-tree Portworx StorageClass. This vulnerability allows authorized users to leak arbitrary information from unprotected endpoints in the control plane’s host network (including link-local or loopback services).

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 5.8
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
References