Comparison Overview

Medical Web Experts

VS

CDW

Medical Web Experts

5950 Sherry Ln, Dallas, Texas, 75225, US
Last Update: 2025-12-19
View Profile
Between 700 and 749
http://www.medicalwebexperts.com

Medical Web Experts, a leading provider of IT and web development solutions for the healthcare industry’s toughest challenges, offers customers a superior, one-stop-shop experience for all their web presence needs. Medical Web Experts help practices, hospitals, health systems, pharmacies, medical device manufacturers, labs and software vendors meet their online presence objectives through our broad, HIPAA-compliant product and service offering. These products and services include a patient portal solution, a mobile app platform, custom software/app development, web design, and internet marketing. Today's healthcare organizations are deeply challenged to meet the market demand for a modern, self-service, secure web presence. Without the necessary internal IT resources and knowledge to successfully create, market and maintain web technologies, projects face imminent failure. Medical Web Experts' experience and holistic approach to the development of customer solutions has resulted in its customer's unparalleled success for more than a decade. Founded in 2003 and headquartered in Dallas, Texas, Medical Web Experts is an employee-owned business made up of 45 staff. We serve hundreds of customers nationwide, including multiple prestigious healthcare organizations such as Baylor, Columbia University, University of Massachusetts, Cleveland Clinic Abu Dhabi, WESTMED, and MedStar Washington. Our mission is to help our clients achieve their online presence objectives, safely and securely, through our broad product and service offering.

NAICS: 5415
NAICS Definition: Computer Systems Design and Related Services
Employees: 22
Subsidiaries: 0
12-month incidents
0
Known data breaches
1
Attack type number
1
View Profile

CDW

200 N. Milwaukee Ave., Vernon Hills, 60061, US
Last Update: 2025-12-25
Between 750 and 799
http://www.cdw.com

At CDW, we know how to make technology work so people can do great things. Our experts bring a full-stack, full-lifestyle approach with custom solutions, services and relationships to bring your vision to life. Through decades of experience, scale, and deep industry expertise, we deliver the full promise of what technology can do to help you reach your goals and drive innovation. Partner with CDW, and together, let’s Make amazing happen. A Fortune 500 company and member of the S&P 500 Index, CDW helps its customers to navigate an increasingly complex IT market and maximize return on their technology investments. For more information about CDW, please visit www.CDW.com.

NAICS: 5415
NAICS Definition: Computer Systems Design and Related Services
Employees: 18,093
Subsidiaries: 9
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/medicalwebexpert.jpeg
Medical Web Experts
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/cdw.jpeg
CDW
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Medical Web Experts
100%
Compliance Rate
0/4 Standards Verified
CDW
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs IT Services and IT Consulting Industry Average (This Year)

No incidents recorded for Medical Web Experts in 2025.

Incidents vs IT Services and IT Consulting Industry Average (This Year)

No incidents recorded for CDW in 2025.

Incident History — Medical Web Experts (X = Date, Y = Severity)

Medical Web Experts cyber incidents detection timeline including parent company and subsidiaries

Incident History — CDW (X = Date, Y = Severity)

CDW cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/medicalwebexpert.jpeg
Medical Web Experts
Incidents

Date Detected: 9/2024
Type:Breach
Attack Vector: Exploitation of system vulnerabilities, Unofficial firmware containing root access
Motivation: Unauthorized access, Malicious operations
Blog: Blog
https://images.rankiteo.com/companyimages/cdw.jpeg
CDW
Incidents

No Incident

FAQ

CDW company demonstrates a stronger AI Cybersecurity Score compared to Medical Web Experts company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Medical Web Experts company has historically faced a number of disclosed cyber incidents, whereas CDW company has not reported any.

In the current year, CDW company and Medical Web Experts company have not reported any cyber incidents.

Neither CDW company nor Medical Web Experts company has reported experiencing a ransomware attack publicly.

Medical Web Experts company has disclosed at least one data breach, while the other CDW company has not reported such incidents publicly.

Neither CDW company nor Medical Web Experts company has reported experiencing targeted cyberattacks publicly.

Neither Medical Web Experts company nor CDW company has reported experiencing or disclosing vulnerabilities publicly.

Neither Medical Web Experts nor CDW holds any compliance certifications.

Neither company holds any compliance certifications.

CDW company has more subsidiaries worldwide compared to Medical Web Experts company.

CDW company employs more people globally than Medical Web Experts company, reflecting its scale as a IT Services and IT Consulting.

Neither Medical Web Experts nor CDW holds SOC 2 Type 1 certification.

Neither Medical Web Experts nor CDW holds SOC 2 Type 2 certification.

Neither Medical Web Experts nor CDW holds ISO 27001 certification.

Neither Medical Web Experts nor CDW holds PCI DSS certification.

Neither Medical Web Experts nor CDW holds HIPAA certification.

Neither Medical Web Experts nor CDW holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

A vulnerability was found in UTT 进取 512W up to 1.7.7-171114. This vulnerability affects the function strcpy of the file /goform/formConfigNoticeConfig. The manipulation of the argument timestart results in buffer overflow. The attack may be performed from remote. The exploit has been made public and could be used.

Published
Date
2025-12-25
Updated
Date
2025-12-25
Risk Information
cvss2
Base: 9.0
Severity: LOW
AV:N/AC:L/Au:S/C:C/I:C/A:C
cvss3
Base: 8.8
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
cvss4
Base: 7.4
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability has been found in UTT 进取 512W up to 1.7.7-171114. This affects the function strcpy of the file /goform/APSecurity. The manipulation of the argument wepkey1 leads to buffer overflow. The attack is possible to be carried out remotely. The exploit has been disclosed to the public and may be used.

Published
Date
2025-12-25
Updated
Date
2025-12-25
Risk Information
cvss2
Base: 9.0
Severity: LOW
AV:N/AC:L/Au:S/C:C/I:C/A:C
cvss3
Base: 8.8
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
cvss4
Base: 7.4
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was detected in ketr JEPaaS up to 7.2.8. Affected by this vulnerability is the function postilService.loadPostils of the file /je/postil/postil/loadPostil. Performing manipulation of the argument keyWord results in sql injection. Remote exploitation of the attack is possible. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-12-25
Updated
Date
2025-12-25
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A security vulnerability has been detected in youlaitech youlai-mall 1.0.0/2.0.0. Affected is the function submitOrderPayment of the file mall-oms/oms-boot/src/main/java/com/youlai/mall/oms/controller/app/OrderController.java. Such manipulation of the argument orderSn leads to improper authorization. The attack may be launched remotely. The exploit has been disclosed publicly and may be used. The real existence of this vulnerability is still doubted at the moment. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-12-25
Updated
Date
2025-12-25
Risk Information
cvss2
Base: 4.0
Severity: LOW
AV:N/AC:L/Au:S/C:N/I:P/A:N
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A weakness has been identified in youlaitech youlai-mall 1.0.0/2.0.0. This impacts the function getMemberByMobile of the file mall-ums/ums-boot/src/main/java/com/youlai/mall/ums/controller/app/MemberController.java. This manipulation causes improper access controls. The attack may be initiated remotely. The exploit has been made available to the public and could be exploited. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-12-25
Updated
Date
2025-12-25
Risk Information
cvss2
Base: 4.0
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:N/A:N
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References