Comparison Overview

Masco Corporation

VS

Builders FirstSource

Masco Corporation

17450 College Parkway, Livonia, 48152, US
Last Update: 2025-12-04
View Profile
Between 750 and 799
http://www.masco.com

Masco Corporation is a global leader in the design, manufacture and distribution of branded home improvement and building products. Our products enhance the way consumers all over the world experience and enjoy their living spaces. Our portfolio of industry-leading brands includes Behr® paint; Delta® and Hansgrohe® faucets, bath and shower fixtures; and HotSpring® spas, to name a few. At Masco, we believe in better living possibilities—for our homes, our environment and our community. Across our businesses and geographies, we seek out these possibilities to grow ourselves, enhance our consumers’ lives, create returns for our shareholders and improve the world around us. We believe a strong, supportive presence in the communities where we live, work and do business is vital. We partner with organizations that are as driven as we are to support the growth of our communities, encourage and enable equity and provide safe, affordable housing for all families. Plumbing: Axor, BrassCraft®, Bristan®, Brizo®, Caldera®Spas, Delta®, Endless Pools®, Hansgrohe®, HotSpring®, Newport Brass®, Peerless®, Mercury Plastics LLC Decorative Architectural: Behr® , KILZ®, Liberty® Hardware For more information about Masco Corporation, visit masco.com.

NAICS: 4233
NAICS Definition: Lumber and Other Construction Materials Merchant Wholesalers
Employees: 10,149
Subsidiaries: 29
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

Builders FirstSource

6031 Connection Dr, Suite 400, Irving, TX, US, 75039
Last Update: 2025-12-01
Between 750 and 799
http://www.bldr.com

Builders FirstSource is the nation’s largest supplier of structural building products, value-added components and services to the professional market for new residential construction and repair and remodeling. Our focus is on providing unparalleled service to both large and small customers. Through investments in innovation and an unmatched portfolio of value-added products and manufacturing capabilities, we’re revolutionizing the homebuilding industry – outperforming today and transforming tomorrow. Builders FirstSource and the Builders FirstSource logo are trademarks of Builders FirstSource, Inc. and/or its subsidiaries. © 2022 Builders FirstSource, Inc. All rights reserved. JOB SEEKERS: Beware of job scams and fake employment offers. It has come to our attention that fraudulent employment offers have been sent to job seekers by people who claim to be employees of Builders FirstSource (BFS). These scammers use a variety of tactics to engage with job seekers to commit identity theft, financial fraud, and other crimes. They can be very convincing, going as far as to steal the profile pictures of our actual recruiters from their LinkedIn profiles and using email addresses that contain words such as ‘@BuildersFirstSource’ or '@BFS.' The scammers will typically ask you to send money at some point (for equipment, training, or a uniform, etc.). A LEGITIMATE BFS RECRUITER OR HIRING MANAGER WILL NEVER ASK YOU TO SEND US MONEY. Also, you will never receive a job offer from us if we have not verbally interviewed you. If you ever receive an unsolicited or suspicious communication that demands any form of payment in connection with employment at BFS, you should consider it to be fraudulent and cease all contact with the sender. You can report US job scams to the FTC (www.ReportFraud.ftc.gov), your state attorney general, or econsumer.gov for international scams. You can also report any fraudulent activity to LinkedIn.

NAICS: 4233
NAICS Definition: Lumber and Other Construction Materials Merchant Wholesalers
Employees: 11,275
Subsidiaries: 7
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/masco-corporation.jpeg
Masco Corporation
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/builders-firstsource.jpeg
Builders FirstSource
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Masco Corporation
100%
Compliance Rate
0/4 Standards Verified
Builders FirstSource
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Wholesale Building Materials Industry Average (This Year)

No incidents recorded for Masco Corporation in 2025.

Incidents vs Wholesale Building Materials Industry Average (This Year)

No incidents recorded for Builders FirstSource in 2025.

Incident History — Masco Corporation (X = Date, Y = Severity)

Masco Corporation cyber incidents detection timeline including parent company and subsidiaries

Incident History — Builders FirstSource (X = Date, Y = Severity)

Builders FirstSource cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/masco-corporation.jpeg
Masco Corporation
Incidents

No Incident

https://images.rankiteo.com/companyimages/builders-firstsource.jpeg
Builders FirstSource
Incidents

No Incident

FAQ

Masco Corporation company demonstrates a stronger AI Cybersecurity Score compared to Builders FirstSource company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, Builders FirstSource company has disclosed a higher number of cyber incidents compared to Masco Corporation company.

In the current year, Builders FirstSource company and Masco Corporation company have not reported any cyber incidents.

Neither Builders FirstSource company nor Masco Corporation company has reported experiencing a ransomware attack publicly.

Neither Builders FirstSource company nor Masco Corporation company has reported experiencing a data breach publicly.

Neither Builders FirstSource company nor Masco Corporation company has reported experiencing targeted cyberattacks publicly.

Neither Masco Corporation company nor Builders FirstSource company has reported experiencing or disclosing vulnerabilities publicly.

Neither Masco Corporation nor Builders FirstSource holds any compliance certifications.

Neither company holds any compliance certifications.

Masco Corporation company has more subsidiaries worldwide compared to Builders FirstSource company.

Builders FirstSource company employs more people globally than Masco Corporation company, reflecting its scale as a Wholesale Building Materials.

Neither Masco Corporation nor Builders FirstSource holds SOC 2 Type 1 certification.

Neither Masco Corporation nor Builders FirstSource holds SOC 2 Type 2 certification.

Neither Masco Corporation nor Builders FirstSource holds ISO 27001 certification.

Neither Masco Corporation nor Builders FirstSource holds PCI DSS certification.

Neither Masco Corporation nor Builders FirstSource holds HIPAA certification.

Neither Masco Corporation nor Builders FirstSource holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

A vulnerability has been found in TykoDev cherry-studio-TykoFork 0.1. This issue affects the function redirectToAuthorization of the file /.well-known/oauth-authorization-server of the component OAuth Server Discovery. Such manipulation of the argument authorizationUrl leads to os command injection. The attack can be executed remotely. The exploit has been disclosed to the public and may be used.

Published
Date
2025-12-07
Updated
Date
2025-12-07
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A flaw has been found in code-projects Question Paper Generator up to 1.0. This vulnerability affects unknown code of the file /selectquestionuser.php. This manipulation of the argument subid causes sql injection. Remote exploitation of the attack is possible. The exploit has been published and may be used.

Published
Date
2025-12-07
Updated
Date
2025-12-07
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was found in alokjaiswal Hotel-Management-services-using-MYSQL-and-php up to 5f8b60a7aa6c06a5632de569d4e3f6a8cd82f76f. Affected by this vulnerability is an unknown functionality of the file /dishsub.php. The manipulation of the argument item.name results in cross site scripting. It is possible to launch the attack remotely. The exploit has been made public and could be used. This product takes the approach of rolling releases to provide continious delivery. Therefore, version details for affected and updated releases are not available. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-12-07
Updated
Date
2025-12-07
Risk Information
cvss2
Base: 3.3
Severity: LOW
AV:N/AC:L/Au:M/C:N/I:P/A:N
cvss3
Base: 2.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 4.8
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability has been found in alokjaiswal Hotel-Management-services-using-MYSQL-and-php up to 5f8b60a7aa6c06a5632de569d4e3f6a8cd82f76f. Affected is an unknown function of the file /usersub.php of the component Request Pending Page. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. This product is using a rolling release to provide continious delivery. Therefore, no version details for affected nor updated releases are available. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-12-07
Updated
Date
2025-12-07
Risk Information
cvss2
Base: 4.0
Severity: LOW
AV:N/AC:L/Au:S/C:N/I:P/A:N
cvss3
Base: 3.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 5.1
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A flaw has been found in Verysync 微力同步 up to 2.21.3. This impacts an unknown function of the file /rest/f/api/resources/f96956469e7be39d/tmp/text.txt?override=false of the component Web Administration Module. Executing manipulation can lead to unrestricted upload. The attack may be performed from remote. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-12-07
Updated
Date
2025-12-07
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References