LG Electronics
Company Details
Linkedin ID:
lg-electronics
Website:
Employees number:
62,227
Number of followers:
1,203,566
NAICS:
334
Industry Type:
Homepage:
lg.com
IP Addresses:
0
Company ID:
LG _2109948
Scan Status:
In-progress
LG Electronics Company CyberSecurity Posture
lg.com
Step into the innovative world of LG Electronics. As a global leader in technology, LG Electronics is dedicated to creating innovative solutions for a better life. Our brand promise, 'Life's Good', embodies our commitment to ensuring a happier, better life for all. With a rich history spanning over six decades and a global presence of more than 100 subsidiaries, we operate on a truly global scale. Since our establishment in 1958, our dedication to enhancing lives worldwide through innovative products has remained unwavering. Our business domains include Home Appliance & Air Solution, Home Entertainment, Vehicle Components Solutions, and Business Solutions. Our management philosophy, "Jeong-do Management," embodies our commitment to high ethical standards and transparent operations. Grounded in the principles of 'Customer-Value Creation' and 'People-Oriented Management', these values shape our corporate culture, fostering creativity, diversity, and integrity. At LG, we believe in the power of collective wisdom, fostering a collaborative work environment. Join us and become a part of a company that is not just about creating solutions for a better life, because at LG, Life's Good.
LG Electronics A.I CyberSecurity Scoring
LG Electronics Risk Score (AI oriented)Between 700 and 749
LG Electronics
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
LG Electronics Global Score (TPRM)XXXX
LG Electronics
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
LG Electronics Company CyberSecurity News & History
Past Incidents
3
Attack Types
2
LG Electronics
Breach
Rankiteo Explanation
Attack with significant impact with customers data leaks: - Attack which causes leak of personal information of customers (only if no ransomware) - Attack by hackers which causes data leak of customer information (only if no ransomware)
Description: A threat actor known as '888' leaked sensitive internal data from LG Electronics, including **source code repositories, configuration files, SQL databases, hardcoded credentials, and SMTP server details**. The breach, disclosed on **November 16, 2025**, originated from a **contractor access point**, highlighting a **supply-chain vulnerability**. Exposed credentials and SMTP details risk enabling **lateral movement, phishing, and impersonation attacks**, while leaked proprietary code threatens **intellectual property and product security**. The hacker shared sample files on **ThreatMon** to prove authenticity, with no confirmed ransom demand. The incident follows a separate breach at **LG Uplus (October 2025)**, suggesting broader targeting of South Korean telecom firms. Analysts suspect **unpatched cloud tools or third-party integrations** as potential attack vectors. LG has not issued a public response, but experts advise immediate **credential rotation and exposure checks** via platforms like *Have I Been Pwned*.
LG Electronics
Breach
Rankiteo Explanation
Attack threatening the organization's existence
Description: Maze ransomware gang published tons of stolen data from the servers of LG Electronics after it failed to fulfill extortion demands. The hackers leaked around 50.2 GB of the data that was stolen from LG's internal network.
LG Electronics
Ransomware
Rankiteo Explanation
Attack threatening the organization's existence
Description: South Korea LG service centers attacked by ransomware attack in August 2017. The attack impacted 230,000 systems in over 150 countries, according to KISA. They investigated the incident and immediately shut down the service center network for the time being.
LG Electronics Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for LG Electronics
Incidents vs Computers and Electronics Manufacturing Industry Average (This Year)
LG Electronics has 257.14% more incidents than the average of same-industry companies with at least one recorded incident.
Incidents vs All-Companies Average (This Year)
LG Electronics has 56.25% more incidents than the average of all companies with at least one recorded incident.
Incident Types LG Electronics vs Computers and Electronics Manufacturing Industry Avg (This Year)
LG Electronics reported 1 incidents this year: 0 cyber attacks, 0 ransomware, 0 vulnerabilities, 1 data breaches, compared to industry peers with at least 1 incident.
Incident History — LG Electronics (X = Date, Y = Severity)
LG Electronics cyber incidents detection timeline including parent company and subsidiaries
LG Electronics Company Subsidiaries
Step into the innovative world of LG Electronics. As a global leader in technology, LG Electronics is dedicated to creating innovative solutions for a better life. Our brand promise, 'Life's Good', embodies our commitment to ensuring a happier, better life for all. With a rich history spanning over six decades and a global presence of more than 100 subsidiaries, we operate on a truly global scale. Since our establishment in 1958, our dedication to enhancing lives worldwide through innovative products has remained unwavering. Our business domains include Home Appliance & Air Solution, Home Entertainment, Vehicle Components Solutions, and Business Solutions. Our management philosophy, "Jeong-do Management," embodies our commitment to high ethical standards and transparent operations. Grounded in the principles of 'Customer-Value Creation' and 'People-Oriented Management', these values shape our corporate culture, fostering creativity, diversity, and integrity. At LG, we believe in the power of collective wisdom, fostering a collaborative work environment. Join us and become a part of a company that is not just about creating solutions for a better life, because at LG, Life's Good.
Loading...
LG Electronics Similar Companies
Samsung Electronics
Samsung Electronics is a global leader in technology, opening new possibilities for people everywhere. Through relentless innovation and discovery, we are transforming the worlds of TVs, smartphones, wearable devices, tablets, digital appliances, network systems, medical devices, semiconductors and
Voltas is the No. 1* Room Air Conditioner Brand in India. Apart from ACs, Voltas offers a wide range of cooling products including Air Coolers, Commercial Refrigeration, Water Coolers and Water Dispensers. Apart from being the leaders in consumer products, Voltas is also one of the world's premier e
HARMAN International
Headquartered in Stamford, Connecticut, HARMAN (harman.com) designs and engineers connected products and solutions for automakers, consumers, and enterprises worldwide, including connected car systems, audio and visual products, enterprise automation solutions; and services supporting the Internet o
Apple
We’re a diverse collective of thinkers and doers, continually reimagining what’s possible to help us all do what we love in new ways. And the same innovation that goes into our products also applies to our practices — strengthening our commitment to leave the world better than we found it. This is w
Motorola Mobility (a Lenovo Company)
As part of the Lenovo family, Motorola Mobility is creating innovative smartphones and accessories designed with the consumer in mind. That’s why we’re looking for the thinkers, innovators and problem solvers who believe in working together to challenge the status quo. If you share our commitment to
.png)
LG Electronics CyberSecurity News
November 17, 2025 08:00 AM
Hackers Allegedly Claim Leak of LG Source Code, SMTP, and Hardcoded Credentials
A threat actor known as "888" has purportedly dumped sensitive data stolen from electronics giant LG Electronics, raising alarms in the...
November 06, 2025 08:00 AM
LG Electronics Wins 18 CES Innovation Awards with ‘Transparent TV’ and ‘AI Platform’
LG Electronics won 18 innovation awards at CES 2026, the world's largest electronics and IT exhibition. The transparent and wireless LG...
November 06, 2025 08:00 AM
Samsung, LG win multiple CES 2026 innovation awards - CHOSUNBIZ
Samsung, LG win multiple CES 2026 innovation awards Samsung Electronics and LG Electronics said on the 6th that they racked up a large...
November 06, 2025 08:00 AM
LG Electronics wins Multiple CES 2026 Innovation Awards
LG has announced that it has been recognized with numerous CES 2026 Innovation Awards, securing two of the highly-coveted Best of Innovation...
November 03, 2025 08:00 AM
US Traces Ransomware Attacks to 2 People Working for Cybersecurity Firms
Two US-based cybersecurity pros allegedly tried to spread ransomware to at least five companies.
October 30, 2025 07:00 AM
Cybersecurity News: LG Uplus confirms breach, Conduent attack impacts 10M+, hackers exploit tools against Ukraine
LG Uplus, one of South Korea's largest telecoms, reported a suspected data breach to the country's cybersecurity agency KISA,...
October 30, 2025 07:00 AM
LG Uplus Reports Suspected Data Breach Amid Growing Cybersecurity Concerns in South Korea
LG Uplus, one of South Korea's largest telecommunications providers, has confirmed to TechCrunch that it has reported a suspected data...
October 28, 2025 07:00 AM
LG Uplus is latest South Korean telco to confirm cybersecurity incident
Korean telecom giant LG Uplus is the third major phone provider in the past six months to report a cybersecurity incident.
October 08, 2025 07:00 AM
Navigating the AI Era: How India Can Build Cyber Resilience at Scale
India's digital economy is booming, but cyber risks are growing just as fast. Fortinet's Vishak Raman shares what's next — from AI-powered...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
LG Electronics CyberSecurity History Information
Official Website of LG Electronics
The official website of LG Electronics is http://www.lg.com/global.
LG Electronics’s AI-Generated Cybersecurity Score
According to Rankiteo, LG Electronics’s AI-generated cybersecurity score is 703, reflecting their Moderate security posture.
How many security badges does LG Electronics’ have ?
According to Rankiteo, LG Electronics currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does LG Electronics have SOC 2 Type 1 certification ?
According to Rankiteo, LG Electronics is not certified under SOC 2 Type 1.
Does LG Electronics have SOC 2 Type 2 certification ?
According to Rankiteo, LG Electronics does not hold a SOC 2 Type 2 certification.
Does LG Electronics comply with GDPR ?
According to Rankiteo, LG Electronics is not listed as GDPR compliant.
Does LG Electronics have PCI DSS certification ?
According to Rankiteo, LG Electronics does not currently maintain PCI DSS compliance.
Does LG Electronics comply with HIPAA ?
According to Rankiteo, LG Electronics is not compliant with HIPAA regulations.
Does LG Electronics have ISO 27001 certification ?
According to Rankiteo,LG Electronics is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of LG Electronics
LG Electronics operates primarily in the Computers and Electronics Manufacturing industry.
Number of Employees at LG Electronics
LG Electronics employs approximately 62,227 people worldwide.
Subsidiaries Owned by LG Electronics
LG Electronics presently has no subsidiaries across any sectors.
LG Electronics’s LinkedIn Followers
LG Electronics’s official LinkedIn profile has approximately 1,203,566 followers.
NAICS Classification of LG Electronics
LG Electronics is classified under the NAICS code 334, which corresponds to Computer and Electronic Product Manufacturing.
LG Electronics’s Presence on Crunchbase
Yes, LG Electronics has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/lg.
LG Electronics’s Presence on LinkedIn
Yes, LG Electronics maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/lg-electronics.
Cybersecurity Incidents Involving LG Electronics
As of November 27, 2025, Rankiteo reports that LG Electronics has experienced 3 cybersecurity incidents.
Number of Peer and Competitor Companies
LG Electronics has an estimated 1,887 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at LG Electronics ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach and Ransomware.
How does LG Electronics detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an containment measures with service center network shut down, and remediation measures with experts recommend scanning for leaked credentials (e.g., have i been pwned), remediation measures with rotating exposed keys..
Incident Details
Can you provide details on each incident ?
Title: Maze Ransomware Attack on LG Electronics
Description: Maze ransomware gang published tons of stolen data from the servers of LG Electronics after it failed to fulfill extortion demands. The hackers leaked around 50.2 GB of the data that was stolen from LG's internal network.
Type: Ransomware
Threat Actor: Maze ransomware gang
Motivation: Extortion
Title: LG Service Centers Ransomware Attack
Description: South Korea LG service centers attacked by ransomware in August 2017. The attack impacted 230,000 systems in over 150 countries.
Date Detected: August 2017
Type: Ransomware
Title: LG Electronics Data Leak by Threat Actor '888'
Description: A threat actor known as '888' leaked sensitive data belonging to LG Electronics, including source code repositories, configuration files, SQL databases, hardcoded credentials, and SMTP server details. The breach was first highlighted on November 16, 2025, and the data was shared on ThreatMon to demonstrate authenticity. The leak is believed to originate from a contractor access point, indicating a supply-chain vulnerability. The exposed data poses risks such as lateral movement, phishing, and intellectual property theft. No ransom demand has been confirmed.
Date Detected: 2025-11-16
Date Publicly Disclosed: 2025-11-16
Type: data breach
Attack Vector: supply-chain compromise (contractor access)infostealer malware (historical TTP of '888')
Vulnerability Exploited: hardcoded credentials in source codeunpatched cloud tools (speculated)third-party integrations (speculated)
Threat Actor: 888
Motivation: financial gain (historical monetization via cryptocurrency)reputation (high-profile targeting)
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
How does the company identify the attack vectors used in incidents ?
Identification of Attack Vectors: The company identifies the attack vectors used in incidents through contractor access.
Impact of the Incidents
What was the impact of each incident ?
Incident : Ransomware LGE2248222
Data Compromised: 50.2 gb of data
Incident : Ransomware LGE15121122
Systems Affected: 230,000
Incident : data breach LG-1232512111725
Data Compromised: Source code repositories, Configuration files, Sql databases, Hardcoded credentials, Smtp server details
Systems Affected: internal communications systemsdevelopment systemspotentially connected services (lateral movement risk)
Operational Impact: risk of impersonation attacksphishing/spam campaigns via exposed SMTPintellectual property exposure
Brand Reputation Impact: high (due to exposure of proprietary data and potential for follow-on attacks)
Identity Theft Risk: potential (via hardcoded credentials)
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Source Code, Configuration Files, Database Records (Sql), Credentials (Hardcoded), Smtp Server Details and .
Which entities were affected by each incident ?
Incident : Ransomware LGE2248222
Entity Name: LG Electronics
Entity Type: Corporation
Industry: Electronics
Incident : Ransomware LGE15121122
Entity Name: LG
Entity Type: Corporation
Industry: Electronics and Technology
Location: South Korea
Incident : data breach LG-1232512111725
Entity Name: LG Electronics
Entity Type: corporation
Industry: consumer electronics
Location: South Korea
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Ransomware LGE15121122
Containment Measures: Service center network shut down
Incident : data breach LG-1232512111725
Remediation Measures: experts recommend scanning for leaked credentials (e.g., Have I Been Pwned)rotating exposed keys
Data Breach Information
What type of data was compromised in each breach ?
Incident : Ransomware LGE2248222
Data Exfiltration: 50.2 GB of data
Incident : data breach LG-1232512111725
Type of Data Compromised: Source code, Configuration files, Database records (sql), Credentials (hardcoded), Smtp server details
Sensitivity of Data: high (proprietary code, internal communications, credentials)
File Types Exposed: code repositoriesconfig filesSQL databases
What measures does the company take to prevent data exfiltration ?
Prevention of Data Exfiltration: The company takes the following measures to prevent data exfiltration: experts recommend scanning for leaked credentials (e.g., Have I Been Pwned), rotating exposed keys, .
How does the company handle incidents involving personally identifiable information (PII) ?
Handling of PII Incidents: The company handles incidents involving personally identifiable information (PII) through by service center network shut down.
Ransomware Information
Was ransomware involved in any of the incidents ?
Incident : data breach LG-1232512111725
Data Exfiltration: True
Lessons Learned and Recommendations
What recommendations were made to prevent future incidents ?
Incident : data breach LG-1232512111725
Recommendations: Audit and remove hardcoded credentials in source code, Strengthen supply-chain security (contractor access controls), Monitor for exposed credentials using tools like Have I Been Pwned, Rotate all potentially compromised keys and credentials, Enhance detection for infostealer malware and initial access brokers, Review cloud tool patching and third-party integration securityAudit and remove hardcoded credentials in source code, Strengthen supply-chain security (contractor access controls), Monitor for exposed credentials using tools like Have I Been Pwned, Rotate all potentially compromised keys and credentials, Enhance detection for infostealer malware and initial access brokers, Review cloud tool patching and third-party integration securityAudit and remove hardcoded credentials in source code, Strengthen supply-chain security (contractor access controls), Monitor for exposed credentials using tools like Have I Been Pwned, Rotate all potentially compromised keys and credentials, Enhance detection for infostealer malware and initial access brokers, Review cloud tool patching and third-party integration securityAudit and remove hardcoded credentials in source code, Strengthen supply-chain security (contractor access controls), Monitor for exposed credentials using tools like Have I Been Pwned, Rotate all potentially compromised keys and credentials, Enhance detection for infostealer malware and initial access brokers, Review cloud tool patching and third-party integration securityAudit and remove hardcoded credentials in source code, Strengthen supply-chain security (contractor access controls), Monitor for exposed credentials using tools like Have I Been Pwned, Rotate all potentially compromised keys and credentials, Enhance detection for infostealer malware and initial access brokers, Review cloud tool patching and third-party integration securityAudit and remove hardcoded credentials in source code, Strengthen supply-chain security (contractor access controls), Monitor for exposed credentials using tools like Have I Been Pwned, Rotate all potentially compromised keys and credentials, Enhance detection for infostealer malware and initial access brokers, Review cloud tool patching and third-party integration security
References
Where can I find more information about each incident ?
Incident : Ransomware LGE15121122
Source: KISA
Incident : data breach LG-1232512111725
Source: ThreatMon (leak publication platform)
Date Accessed: 2025-11-16
Incident : data breach LG-1232512111725
Source: Cybersecurity analysts (speculative commentary on cloud tools/third-party risks)
Date Accessed: 2025-11
Incident : data breach LG-1232512111725
Source: Historical reporting on '888' (Microsoft, BMW Hong Kong, Decathlon, Shell breaches)
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: KISA, and Source: ThreatMon (leak publication platform)Date Accessed: 2025-11-16, and Source: Cybersecurity analysts (speculative commentary on cloud tools/third-party risks)Date Accessed: 2025-11, and Source: Historical reporting on '888' (Microsoft, BMW Hong Kong, Decathlon, Shell breaches).
Investigation Status
What is the current status of the investigation for each incident ?
Incident : data breach LG-1232512111725
Investigation Status: ongoing (no public statement from LG Electronics as of reporting)
Initial Access Broker
How did the initial access broker gain entry for each incident ?
Incident : data breach LG-1232512111725
Entry Point: contractor access
High Value Targets: Source Code Repositories, Internal Communications Systems,
Data Sold on Dark Web: Source Code Repositories, Internal Communications Systems,
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident ?
Incident : data breach LG-1232512111725
Root Causes: Supply-Chain Vulnerability (Contractor Access), Hardcoded Credentials In Code, Potential Unpatched Cloud Tools,
Additional Questions
General Information
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident were an Maze ransomware gang and 888.
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on August 2017.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2025-11-16.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were 50.2 GB of data, , source code repositories, configuration files, SQL databases, hardcoded credentials, SMTP server details and .
What was the most significant system affected in an incident ?
Most Significant System Affected: The most significant system affected in an incident was internal communications systemsdevelopment systemspotentially connected services (lateral movement risk).
Response to the Incidents
What containment measures were taken in the most recent incident ?
Containment Measures in Most Recent Incident: The containment measures taken in the most recent incident was Service center network shut down.
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were SQL databases, SMTP server details, configuration files, hardcoded credentials, 50.2 GB of data and source code repositories.
Lessons Learned and Recommendations
What was the most significant recommendation implemented to improve cybersecurity ?
Most Significant Recommendation Implemented: The most significant recommendation implemented to improve cybersecurity was Strengthen supply-chain security (contractor access controls), Monitor for exposed credentials using tools like Have I Been Pwned, Rotate all potentially compromised keys and credentials, Review cloud tool patching and third-party integration security, Enhance detection for infostealer malware and initial access brokers and Audit and remove hardcoded credentials in source code.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident are KISA, Cybersecurity analysts (speculative commentary on cloud tools/third-party risks), Historical reporting on '888' (Microsoft, BMW Hong Kong, Decathlon, Shell breaches) and ThreatMon (leak publication platform).
Investigation Status
What is the current status of the most recent investigation ?
Current Status of Most Recent Investigation: The current status of the most recent investigation is ongoing (no public statement from LG Electronics as of reporting).
Initial Access Broker
What was the most recent entry point used by an initial access broker ?
Most Recent Entry Point: The most recent entry point used by an initial access broker was an contractor access.
.png)
Latest Global CVEs (Not Company-Specific)
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/angular/angular/commit/0276479e7d0e280e0f8d26fa567d3b7aa97a516f
- https://github.com/angular/angular/commit/05fe6686a97fa0bcd3cf157805b3612033f975bc
- https://github.com/angular/angular/commit/3240d856d942727372a705252f7c8c115394a41e
- https://github.com/angular/angular/releases/tag/19.2.16
- https://github.com/angular/angular/releases/tag/20.3.14
- https://github.com/angular/angular/releases/tag/21.0.1
- https://github.com/angular/angular/security/advisories/GHSA-58c5-g7wp-6w37
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=lg-electronics' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
