M6
Last Update: 2024-08-14 (UTC)
Between 750 and 799
L'actualité des programmes M6
NAICS: 51211
NAICS Definition: Motion Picture and Video Production
Employees: 229
Subsidiaries: 7
12-month incidents
0
Known data breaches
0
Attack type number
1
Comparison Overview
M6
VS
PRISA
PRISA
Last Update: 2025-05-06 (UTC)
Between 750 and 799
PRISA es la compañía líder en la creación y distribución de contenidos culturales, educativos, de información y entretenimiento en los mercados de habla española y portuguesa. Presente en 24 países, PRISA llega a millones de personas a través de sus marcas globales El País, LOS40, Santillana, W Radio o As. Como líder en prensa, televisión, radio hablada, musical y educación es uno de los principales grupos mediáticos del mundo hispano por la gran calidad de sus contenidos y por su voluntad de participar en la economía digital a través de la conectividad y la innovación de productos y servicios. Su presencia en Brasil y Portugal, y en el creciente mercado hispano de Estados Unidos, le abre un mercado global de más de 700 millones de personas. PRISA es uno de los principales grupos mediáticos del mundo hispano, situado a la vanguardia de las empresas de comunicación y educación. Con 152 millones de navegadores únicos* en todo el mundo, PRISA se sitúa a la vanguardia de las empresas de comunicación y educación con una sólida estrategia de distribución de contenidos, ofreciendo innovadoras propuestas a través de distintos formatos, canales y plataformas. * (Fuente: Adobe Omniture + Netscope, promedio anual enero-diciembre 2018) Redes Sociales: https://www.facebook.com/PRISA https://twitter.com/PRISA https://cadenaser.com/politica-de-rrss/
NAICS: 51211
NAICS Definition: Motion Picture and Video Production
Employees: 10,001+
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0
Compliance Badges Comparison
Security & Compliance Standards Overview
M6
ISO 27001
Not verified
SOC2 Type 1
Not verified
SOC2 Type 2
Not verified
GDPR
Not verified
PCI DSS
Not verified
HIPAA
Not verified
PRISA
ISO 27001
Not verified
SOC2 Type 1
Not verified
SOC2 Type 2
Not verified
GDPR
Not verified
PCI DSS
Not verified
HIPAA
Not verified
Compliance Summary
M6
100%
Compliance Rate
0/4 Standards Verified
PRISA
0%
Compliance Rate
0/4 Standards Verified
Benchmark & Cyber Underwriting Signals
Incidents vs Media Production Industry Average (This Year)
No incidents recorded for M6 in 2025.
Incidents vs Media Production Industry Average (This Year)
No incidents recorded for PRISA in 2025.
Incident History — M6 (X = Date, Y = Severity)
M6 cyber incidents detection timeline including parent company and subsidiaries
Incident History — PRISA (X = Date, Y = Severity)
PRISA cyber incidents detection timeline including parent company and subsidiaries
FAQ
PRISA company demonstrates a stronger AI Cybersecurity Score compared to M6 company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.
M6 company has historically faced a number of disclosed cyber incidents, whereas PRISA company has not reported any.
In the current year, PRISA company and M6 company have not reported any cyber incidents.
M6 company has confirmed experiencing a ransomware attack, while PRISA company has not reported such incidents publicly.
Neither PRISA company nor M6 company has reported experiencing a data breach publicly.
Neither PRISA company nor M6 company has reported experiencing targeted cyberattacks publicly.
Neither M6 company nor PRISA company has reported experiencing or disclosing vulnerabilities publicly.
Neither M6 nor PRISA holds any compliance certifications.
Neither company holds any compliance certifications.
M6 company has more subsidiaries worldwide compared to PRISA company.
M6 company employs more people globally than PRISA company, reflecting its scale as a Media Production.
Neither M6 nor PRISA holds SOC 2 Type 1 certification.
Neither M6 nor PRISA holds SOC 2 Type 2 certification.
Neither M6 nor PRISA holds ISO 27001 certification.
Neither M6 nor PRISA holds PCI DSS certification.
Neither M6 nor PRISA holds HIPAA certification.
Neither M6 nor PRISA holds GDPR certification.
Latest Global CVEs (Not Company-Specific)
Description
The Bold Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘percentage’ parameter in all versions up to, and including, 5.4.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Risk Information
cvss3
Base: 6.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
References
Description
The ComboServlet in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.2, 2023.Q3.1 through 2023.Q3.5, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions does not limit the number or size of the files it will combine, which allows remote attackers to create very large responses that lead to a denial of service attack via the URL query string.
Risk Information
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A relative path traversal vulnerability was discovered in Productivity Suite software version 4.4.1.19. The vulnerability allows an unauthenticated remote attacker to interact with the ProductivityService PLC simulator and delete arbitrary directories on the target machine.
Risk Information
cvss3
Base: 4.0
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A relative path traversal vulnerability was discovered in Productivity Suite software version 4.4.1.19. The vulnerability allows an unauthenticated remote attacker to interact with the ProductivityService PLC simulator and create arbitrary directories on the target machine.
Risk Information
cvss3
Base: 4.0
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A relative path traversal vulnerability was discovered in Productivity Suite software version 4.4.1.19. The vulnerability allows an unauthenticated remote attacker to interact with the ProductivityService PLC simulator and delete arbitrary files on the target machine.
Risk Information
cvss3
Base: 7.5
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:H
cvss4
Base: 8.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
