Comparison Overview
Marathon Petroleum Corporation

Marathon Petroleum Corporation
539 S. Main St, Findlay, 45840, US
Last Update: 31/03/2026
Marathon Petroleum Corporation (MPC) is a leading, integrated, downstream and midstream energy company headquartered in Findlay, Ohio. The company operates the nation's largest refining system. MPC's marketing system includes branded locations across the United States, ...

Chevron
1400 Smith St, Houston, Texas, US, 77002
Last Update: 26/06/2026
Our greatest resource is our people. Their ingenuity, creativity and collaboration have met the complex challenges of energy’s past. Together, we’ll take on the future. We support the LinkedIn Terms of Use (User Agreement), and we expect visitors to our page to do the ...
Compliance Ranges Comparison

Marathon Petroleum Corporation







Chevron






Benchmark & Cyber Underwriting Signals
Incidents vs Oil and Gas Industry Avg (This Year)
No incidents recorded for Marathon Petroleum Corporation in 2026.
Incidents vs Oil and Gas Industry Avg (This Year)
Chevron has 5.66% fewer incidents than the average of all companies with at least one recorded incident.
Incident History - Marathon Petroleum Corporation (X = Date, Y = Severity)
Marathon Petroleum Corporation cyber incidents detection timeline including parent company and subsidiaries.
Incident History - Chevron (X = Date, Y = Severity)
Chevron cyber incidents detection timeline including parent company and subsidiaries.
Notable Incidents

Marathon Petroleum Corporation

Chevron
FAQ
Latest Global CVEs
Server-side request forgery (ssrf) in Microsoft Entra Provisioning Service (SyncFabric) allows an authorized attacker to elevate privileges over a network.
Incorrect authorization in Microsoft Exchange Online allows an authorized attacker to elevate privileges over a network.
Server-side request forgery (ssrf) in Azure OpenAI allows an authorized attacker to elevate privileges over a network.
Url redirection to untrusted site ('open redirect') in M365 Copilot allows an unauthorized attacker to elevate privileges over a network.
Improper access control in Azure Synapse allows an authorized attacker to elevate privileges over a network.