Comparison Overview

Masco Corporation

VS

Knauf

Masco Corporation

17450 College Parkway, Livonia, 48152, US
Last Update: 2025-12-04
View Profile
Between 750 and 799
http://www.masco.com

Masco Corporation is a global leader in the design, manufacture and distribution of branded home improvement and building products. Our products enhance the way consumers all over the world experience and enjoy their living spaces. Our portfolio of industry-leading brands includes Behr® paint; Delta® and Hansgrohe® faucets, bath and shower fixtures; and HotSpring® spas, to name a few. At Masco, we believe in better living possibilities—for our homes, our environment and our community. Across our businesses and geographies, we seek out these possibilities to grow ourselves, enhance our consumers’ lives, create returns for our shareholders and improve the world around us. We believe a strong, supportive presence in the communities where we live, work and do business is vital. We partner with organizations that are as driven as we are to support the growth of our communities, encourage and enable equity and provide safe, affordable housing for all families. Plumbing: Axor, BrassCraft®, Bristan®, Brizo®, Caldera®Spas, Delta®, Endless Pools®, Hansgrohe®, HotSpring®, Newport Brass®, Peerless®, Mercury Plastics LLC Decorative Architectural: Behr® , KILZ®, Liberty® Hardware For more information about Masco Corporation, visit masco.com.

NAICS: 4233
NAICS Definition: Lumber and Other Construction Materials Merchant Wholesalers
Employees: 10,149
Subsidiaries: 29
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

Knauf

Am Bahnhof 7, Iphofen, undefined, D-97346, DE
Last Update: 2025-12-01
Between 700 and 749
http://www.knauf.com

Everyone sees opportunity differently. Knauf sees opportunity in everyone. Similar to other global businesses, our 41,500 team members in 90 countries across 300 sites provide a huge opportunity for anyone with ambition and energy. Unlike other global businesses, you may be surprised that Knauf is still a family-owned and run company and that means that our values and people-first culture are at the forefront of how the business operates. This means that career with us can offer you something a bit special; family values at the heart combined with global success and influence. Founded in 1932, we are one of the world’s leading manufacturers of construction materials for interior design, building insulation, and design ceilings. We are made up of 4 core divisions and our plants across the globe produce state-of-the-art drywall systems, plasters, and insulating materials as well as external thermal insulation composite systems.

NAICS: 4233
NAICS Definition: Lumber and Other Construction Materials Merchant Wholesalers
Employees: 11,662
Subsidiaries: 1
12-month incidents
0
Known data breaches
0
Attack type number
1

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/masco-corporation.jpeg
Masco Corporation
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/knauf.jpeg
Knauf
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Masco Corporation
100%
Compliance Rate
0/4 Standards Verified
Knauf
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Wholesale Building Materials Industry Average (This Year)

No incidents recorded for Masco Corporation in 2025.

Incidents vs Wholesale Building Materials Industry Average (This Year)

No incidents recorded for Knauf in 2025.

Incident History — Masco Corporation (X = Date, Y = Severity)

Masco Corporation cyber incidents detection timeline including parent company and subsidiaries

Incident History — Knauf (X = Date, Y = Severity)

Knauf cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/masco-corporation.jpeg
Masco Corporation
Incidents

No Incident

https://images.rankiteo.com/companyimages/knauf.jpeg
Knauf
Incidents

Date Detected: 06/2022
Type:Ransomware
Motivation: Financial Gain
Blog: Blog

FAQ

Masco Corporation company demonstrates a stronger AI Cybersecurity Score compared to Knauf company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Knauf company has historically faced a number of disclosed cyber incidents, whereas Masco Corporation company has not reported any.

In the current year, Knauf company and Masco Corporation company have not reported any cyber incidents.

Knauf company has confirmed experiencing a ransomware attack, while Masco Corporation company has not reported such incidents publicly.

Neither Knauf company nor Masco Corporation company has reported experiencing a data breach publicly.

Neither Knauf company nor Masco Corporation company has reported experiencing targeted cyberattacks publicly.

Neither Masco Corporation company nor Knauf company has reported experiencing or disclosing vulnerabilities publicly.

Neither Masco Corporation nor Knauf holds any compliance certifications.

Neither company holds any compliance certifications.

Masco Corporation company has more subsidiaries worldwide compared to Knauf company.

Knauf company employs more people globally than Masco Corporation company, reflecting its scale as a Wholesale Building Materials.

Neither Masco Corporation nor Knauf holds SOC 2 Type 1 certification.

Neither Masco Corporation nor Knauf holds SOC 2 Type 2 certification.

Neither Masco Corporation nor Knauf holds ISO 27001 certification.

Neither Masco Corporation nor Knauf holds PCI DSS certification.

Neither Masco Corporation nor Knauf holds HIPAA certification.

Neither Masco Corporation nor Knauf holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

A vulnerability has been found in TykoDev cherry-studio-TykoFork 0.1. This issue affects the function redirectToAuthorization of the file /.well-known/oauth-authorization-server of the component OAuth Server Discovery. Such manipulation of the argument authorizationUrl leads to os command injection. The attack can be executed remotely. The exploit has been disclosed to the public and may be used.

Published
Date
2025-12-07
Updated
Date
2025-12-07
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A flaw has been found in code-projects Question Paper Generator up to 1.0. This vulnerability affects unknown code of the file /selectquestionuser.php. This manipulation of the argument subid causes sql injection. Remote exploitation of the attack is possible. The exploit has been published and may be used.

Published
Date
2025-12-07
Updated
Date
2025-12-07
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was found in alokjaiswal Hotel-Management-services-using-MYSQL-and-php up to 5f8b60a7aa6c06a5632de569d4e3f6a8cd82f76f. Affected by this vulnerability is an unknown functionality of the file /dishsub.php. The manipulation of the argument item.name results in cross site scripting. It is possible to launch the attack remotely. The exploit has been made public and could be used. This product takes the approach of rolling releases to provide continious delivery. Therefore, version details for affected and updated releases are not available. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-12-07
Updated
Date
2025-12-07
Risk Information
cvss2
Base: 3.3
Severity: LOW
AV:N/AC:L/Au:M/C:N/I:P/A:N
cvss3
Base: 2.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 4.8
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability has been found in alokjaiswal Hotel-Management-services-using-MYSQL-and-php up to 5f8b60a7aa6c06a5632de569d4e3f6a8cd82f76f. Affected is an unknown function of the file /usersub.php of the component Request Pending Page. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. This product is using a rolling release to provide continious delivery. Therefore, no version details for affected nor updated releases are available. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-12-07
Updated
Date
2025-12-07
Risk Information
cvss2
Base: 4.0
Severity: LOW
AV:N/AC:L/Au:S/C:N/I:P/A:N
cvss3
Base: 3.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 5.1
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A flaw has been found in Verysync 微力同步 up to 2.21.3. This impacts an unknown function of the file /rest/f/api/resources/f96956469e7be39d/tmp/text.txt?override=false of the component Web Administration Module. Executing manipulation can lead to unrestricted upload. The attack may be performed from remote. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-12-07
Updated
Date
2025-12-07
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References