What is the official website of Mövenpick Hotels & Resorts ?

The official website of Mövenpick Hotels & Resorts is http://www.movenpick.com.

What is Mövenpick Hotels & Resorts's cybersecurity risk score?

Mövenpick Hotels & Resorts has an AI-generated cybersecurity risk score of 800 out of 1000, indicating a Good security posture according to Rankiteo's assessment.

How many security incidents has Mövenpick Hotels & Resorts experienced?

According to Rankiteo, Mövenpick Hotels & Resorts currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Mövenpick Hotels & Resorts been affected by any supply chain cyber incidents ?

According to Rankiteo, Mövenpick Hotels & Resorts has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Mövenpick Hotels & Resorts have SOC 2 Type 1 certification ?

According to Rankiteo, Mövenpick Hotels & Resorts is not certified under SOC 2 Type 1.

Does Mövenpick Hotels & Resorts have SOC 2 Type 2 certification ?

According to Rankiteo, Mövenpick Hotels & Resorts does not hold a SOC 2 Type 2 certification.

Does Mövenpick Hotels & Resorts comply with GDPR ?

According to Rankiteo, Mövenpick Hotels & Resorts is not listed as GDPR compliant.

Does Mövenpick Hotels & Resorts have PCI DSS certification ?

According to Rankiteo, Mövenpick Hotels & Resorts does not currently maintain PCI DSS compliance.

Does Mövenpick Hotels & Resorts comply with HIPAA ?

According to Rankiteo, Mövenpick Hotels & Resorts is not compliant with HIPAA regulations.

Does Mövenpick Hotels & Resorts have ISO 27001 certification ?

According to Rankiteo,Mövenpick Hotels & Resorts is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Mövenpick Hotels & Resorts operate in ?

Mövenpick Hotels & Resorts operates primarily in the Hospitality industry.

How many employees does Mövenpick Hotels & Resorts have ?

Mövenpick Hotels & Resorts employs approximately 8,029 people worldwide.

Does Mövenpick Hotels & Resorts own any subsidiaries ?

Mövenpick Hotels & Resorts presently has no subsidiaries across any sectors.

How many LinkedIn followers does Mövenpick Hotels & Resorts have ?

Mövenpick Hotels & Resorts's official LinkedIn profile has approximately 388,181 followers.

What is the NAICS classification code for Mövenpick Hotels & Resorts ?

Mövenpick Hotels & Resorts is classified under the NAICS code 7211, which corresponds to Traveler Accommodation.

Does Mövenpick Hotels & Resorts have a Crunchbase profile ?

No, Mövenpick Hotels & Resorts does not have a profile on Crunchbase.

Does Mövenpick Hotels & Resorts have a LinkedIn profile ?

Yes, Mövenpick Hotels & Resorts maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/moevenpick-hotels-&-resorts.

How many cybersecurity incidents has Mövenpick Hotels & Resorts experienced ?

As of June 30, 2026, Rankiteo reports that Mövenpick Hotels & Resorts has experienced 1 cybersecurity incidents.

How many peer or competitor companies does Mövenpick Hotels & Resorts have ?

Mövenpick Hotels & Resorts has an estimated 14,288 peer or competitor companies worldwide.

What types of cybersecurity incidents has Mövenpick Hotels & Resorts faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Breach.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

MHR

Boost Score +25 with badge (5 left)

800

/1000

Good

825

/1000

Good

Mövenpick Hotels & Resorts Vendor Cyber Rating & Cyber Score

movenpick.com

Add Your Compliance Badge

In Switzerland, in 1948, Ueli Prager created Mövenpick, a revolutionary dining concept where anyone could enjoy a taste of good wine, good times and the good life. Today that same brand of welcoming hospitality lives on in every Mövenpick hotel, where everyone can appreciate life’s essential pleasures, through moments of true indulgence. With more than 120 hotels and resorts in over 35 countries, Mövenpick remains true to its Swiss heritage and rich culinary legacy, honoring its founder’s promise to do things well by doing things right. In recognition of the brand’s holistic approach to sustainability, and its deep commitment to local environments and communities, Green Globe has named Mövenpick the world’s most sustainable hotel company

MHR A.I CyberSecurity Scoring

Scoring History

MHR

Mövenpick Hotels & Resorts CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

Mövenpick Hotels & ...

Breach

06/2018

DED456251223

Loading…

A.I.

MHR Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for MHR

Incidents vs Hospitality Industry Avg (This Year)

No incidents recorded for Mövenpick Hotels & Resorts in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Mövenpick Hotels & Resorts in 2026.

Incident Types MHR vs Hospitality Industry Avg (This Year)

No incidents recorded for Mövenpick Hotels & Resorts in 2026.

Incident History - MHR (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Mövenpick Hotels & Resorts Subsidiaries

MHR

Hospitality

Website: http://www.movenpick.com

Company Size: 8,029

120

AccorHospitality

Fairmont Hotels & ResortsHospitality

Fairmont Bab Al Bahr, Abu DhabiHospitality

Makkah Clock Royal Tower, A Fairmont HotelHospitality

Accor - North & Central AmericaHospitality

The Rimrock Resort HotelHospitality

Fairmont DubaiHospitality

Fairmont Royal YorkHospitality

The SavoyHospitality

Raffles Hotels & ResortsHospitality

Raffles DubaiHospitality

Raffles Hotel SingaporeHospitality

Le Royal Monceau - Raffles ParisHospitality

Raffles Makkah PalaceHospitality

Raffles SeychellesHospitality

Raffles Hotel Le Royal, Phnom PenhHospitality

Raffles Grand Hotel d'AngkorHospitality

Swissôtel Hotels & ResortsHospitality

Fairmont Singapore & Swissôtel The StamfordHospitality

Swissôtel LimaHospitality

Swissôtel MakkahHospitality

Swissôtel KolkataHospitality

Swissôtel AmsterdamHospitality

Swissôtel Büyük Efes, İzmirHospitality

Swissôtel Resort Bodrum BeachHospitality

Swissôtel ChicagoHospitality

Swissôtel Merchant Court, SingaporeHospitality

Swissôtel SydneyHospitality

Swissôtel QuitoHospitality

Swissôtel Tallinn, EstoniaHospitality

Swissôtel Nankai OsakaHospitality

Swissôtel Le Plaza Basel (4**** superior)Hospitality

Fairmont Monte CarloHospitality

Fairmont MayakobaHospitality

Fairmont JaipurHospitality

Fairmont Banff SpringsHospitality

Fairmont AmmanHospitality

Fairmont Hotel VancouverHospitality

Fairmont The NorfolkHospitality

Fairmont Chateau Lake LouiseHospitality

Fairmont Jasper Park LodgeHospitality

Fairmont Le Montreux PalaceHospitality

Fairmont Scottsdale PrincessHospitality

Meetings at the PrincessHospitality

Fairmont Mount Kenya Safari ClubHospitality

Fairmont Pacific RimHospitality

The Plaza, A Fairmont Managed HotelHospitality

Fairmont The Queen ElizabethHospitality

Fairmont Nile CityHospitality

Fairmont St AndrewsHospitality

Fairmont Baku, Flame TowersHospitality

Fairmont Chateau WhistlerHospitality

Fairmont San FranciscoHospitality

Fairmont Le Château FrontenacHospitality

Fairmont WaterfrontHospitality

Hamilton Princess & Beach Club, a Fairmont Managed HotelHospitality

Fairmont MakatiHospitality

Fairmont SouthamptonHospitality

Fairmont Hotel MacdonaldHospitality

Fairmont Heliopolis & TowersHospitality

Fairmont Château LaurierHospitality

Fairmont Chicago, Millennium ParkHospitality

Fairmont Olympic HotelHospitality

Fairmont Orchid, HawaiiHospitality

Fairmont Le Château MontebelloHospitality

Fairmont Kea Lani MauiHospitality

Fairmont DallasHospitality

Fairmont Mara Safari ClubHospitality

Fairmont WinnipegHospitality

Fairmont Le Manoir RichelieuHospitality

Claremont Resort & ClubHospitality

Fairmont PalliserHospitality

Fairmont Sonoma Mission Inn & SpaHospitality

Fairmont Copley Plaza BostonHospitality

Fairmont Miramar Hotel & BungalowsHospitality

Fairmont Washington, D.C.Hospitality

Fairmont PittsburghHospitality

Fairmont BeijingHospitality

Sheraton Suites Calgary Eau ClaireHospitality

Fairmont TremblantHospitality

Fairmont Peace HotelAccounting

Global Events & Meetings Solutions, Fairmont Raffles SwissotelHospitality

Fairmont Vancouver AirportHospitality

Fairmont Yangcheng LakeHospitality

Fairmont Heritage Place, Ghirardelli SquareHospitality

Fairmont Grand Hotel KyivHospitality

Fairmont Royal PavilionHospitality

Fairmont Zimbali Lodge and ResortHospitality

Fairmont Heritage Place, Acapulco DiamanteHospitality

Fairmont Heritage Place, At Nature's DoorHospitality

Fairmont Heritage Place, InspirationHospitality

SofitelHospitality

Sofitel Mexico ReformaHospitality

Restaurant RenoirRestaurants

Novotel HotelsHospitality

ALL - Accor Live LimitlessTravel Arrangements

Mercure HotelsHospitality

ibis, ibis Styles, ibis budgetHospitality

Novotel & ibis Sydney on Darling HarbourHospitality

Ibis Jakarta Mangga DuaHospitality

Novotel & ibis SoloFood and Beverage Services

ibis Jakarta SenenHospitality

ibis Mumbai AirportHospitality

ibis Bali KutaHospitality

ibis Bengaluru Hosur RoadHospitality

ibis Jakarta ArcadiaHospitality

Ibis Styles hotels ZeebruggeLeasing Non-residential Real Estate

MGallery Hotel CollectionHospitality

John PaulConsumer Services

Pullman Hotels & ResortsHospitality

onefinestayHospitality

Accor Heartist SolidarityGestion des associations et fondations

Gekko Tech by GekkoIT Services and IT Consulting

hotelF1Hospitality

Teldar Travel by GekkoTravel Arrangements

Hcorpo by GekkoHospitality

D-EDGE Hospitality SolutionsHospitality

Infinite by GekkoHospitality

Miles Attack by GekkoTravel Arrangements

ACCOR Meeting Planner & EventsÉvénementiel

Loading…

Mövenpick Hotels & Resorts Similar Companies

DoubleTree by Hilton

cb doubletree.com

DoubleTree by Hilton hotels are distinctively designed properties that provide true comfort to today’s business and leisure travelers. From the millions of delighted hotel guests who are welcomed with the brand’s legendary, warm chocolate chip cookies at check-in to the advantages of the award-winning Hilton HHonors® guest reward program, each DoubleTree by Hilton guest receives a satisfying stay wherever their travels take them. With a growing collection of contemporary, upscale accommodations in more than 375+ gateway cities, metropolitan areas and vacation destinations worldwide. DoubleTree by Hilton is part of Hilton Worldwide (NYSE: HLT), a leading global hospitality company spanning the lodging sector from luxury and full-service hotels and resorts to extended-stay suites and focused-service hotels. For 95 years, Hilton Worldwide has been dedicated to continuing its tradition of providing exceptional guest experiences. The company’s portfolio of eleven world-class global brands is comprised of more than 4,100 managed, franchised, owned and leased hotels and timeshare properties, with more than 685,000 rooms in 92 countries and territories, including Hilton Hotels & Resorts, Waldorf Astoria Hotels & Resorts, Conrad Hotels & Resorts, Curio – A Collection by Hilton, DoubleTree by Hilton, Embassy Suites Hotels, Hilton Garden Inn, Hampton Hotels, Homewood Suites by Hilton, Home2 Suites by Hilton and Hilton Grand Vacations. The company also manages an award-winning customer loyalty program, Hilton Honors.

JW Marriott

jwmarriott.com

No loud pretense. No excess formalities. Just understated elegance you’ll feel the moment you walk into one of over 80 worldwide destinations. JW Marriott is part of Marriott International’s luxury portfolio and consists of beautiful properties in gateway cities and distinctive resort locations in 28 countries around the world. These elegant hotels cater to today’s sophisticated, self-assured travelers, offering them the quiet luxury they seek in a warmly authentic, relaxed atmosphere lacking in pretense. JW Marriott properties artfully provide highly crafted, anticipatory experiences that are reflective of their locale so that their guests have the time to focus on what is most important to them.

Meliá Hotels International

ow.ly

Welcome to Meliá Hotels International! From Mallorca to the world, our story is an exciting journey that began more than six decades ago and has led us to become one of the largest hotel chains on the planet and the most sustainable in Europe (S&P Global). With more than 400 hotels across the world, our passion for hospitality drives us to deliver unique and memorable experiences through our nine brands: Gran Meliá Hotels & Resorts, ME by Meliá, The Meliá Collection, Paradisus by Meliá, Meliá Hotels & Resorts, ZEL, INNSiDE by Meliá, Sol by Meliá and Affiliated by Meliá. If you are looking for a place where your talent can shine and contribute to a more sustainable future, Meliá Hotels International is your destination. We are a family of more than 45,000 people, where every one of us is a VIP (Very Inspiring People) and we are proud to be a Top Employer in multiple countries. Being part of Meliá is to undertake a journey without borders, because the possibilities for development and learning are endless. Here, we enjoy a passionate and familiar environment, full of opportunities where inspiration will always be with you. Join us and feel like a true VIP!

Minor Hotels

minorhotels.com

Minor Hotels is a global hospitality leader with over 560 hotels and resorts across six continents, a diverse portfolio of F&B businesses and a selection of luxury transportation services. With over four decades of experience, we build stronger brands, foster lasting partnerships, and drive business success by staying focused on what matters most to our guests, team members and partners. Our diverse hotel brands - from the luxury of Anantara and Tivoli to the vibrant style of Avani and nhow - bring our guests to the most desirable hotel and resort destinations around the world. We also own a collection of related hospitality businesses, including luxury residences, private jets, restaurants and bars, spa and wellness, and river cruises and rail journeys. #MinorHotels

Jumeirah

jumeirah.com

Jumeirah, a global leader in luxury hospitality and a member of Dubai Holding, operates an exceptional portfolio of 31 properties, including 33 signature F&B restaurants, across the Middle East, Europe, Asia and Africa. In 1999, Jumeirah changed the face of luxury hospitality with the opening of the iconic Jumeirah Burj Al Arab and the brand is now renowned worldwide for its distinguished beachfront resorts, esteemed city hotels and luxury residences. From the contemporary Maldivian island paradise at Jumeirah Olhahali Island to the art-inspired Jumeirah Capri Palace in Italy and the modern twist on a British classic at Jumeirah Carlton Tower in London, the brand has become synonymous with warm and generous service and the ability to craft distinctive and purposeful experiences that bring joy to guests from across the world.

TUI

tuigroup.com

We’re adventure seekers. Smile givers. Impact makers. We believe in the power of travel. It broadens horizons for our customers, and for our people too. New places to live, new roles to explore, new communities to join. It’s yours for the taking. We’re TUI, a leading global travel and leisure experience company that makes holiday dreams come true for people around the world. We are one of the world’s leading tourism groups counting 1200 travel agencies and online portals, five airlines with around 130 aircraft, over 400 hotels, 16 cruise liners, digital platforms for tours and activities and most importantly over 60 000 colleagues around the world. What unites us is creating moments that enrich the lives of our 21 million customers. Beside the unforgettable experience we provide our customers, we also believe in the good that tourism can bring and we care deeply about our environmental impact. The TUI Care foundation has projects in over 30 countries worldwide, building on the potential of tourism as a global force for development. The Foundation opens up new perspectives through education and training, empowers local communities to benefit from the success of tourism and engages in the protection of nature and the environment. At TUI we simply say “Let’s TUI it”. For us, that means creating happiness. Tackling challenges every day together, with a positive, can-do attitude, and finding solutions even for the most unexpected situations. Our teams across TUI are just as diverse as our destinations. So whether you have lots of experience or none at all. If you want to work in an office or feel best in the field. No matter if you’re an accomplished tech whizz, an aspiring entertainer, or simply in love with flying. There’s a place for you here.

IHG Hotels & Resorts

ihgplc.com

IHG Hotels & Resorts [LON:IHG, NYSE:IHG (ADRs)] is a global hospitality company, with a purpose to provide True Hospitality for Good. With a family of 21 hotel brands and IHG One Rewards, one of the world's largest hotel loyalty programmes, IHG has over 7,000 open hotels in more than 100 countries, and a development pipeline of over 2,300 properties. Luxury & Lifestyle: Six Senses Hotels Resorts Spas, Regent Hotels & Resorts, InterContinental Hotels & Resorts, Vignette Collection, Kimpton Hotels & Restaurants, Hotel Indigo Premium: Noted Collection, voco hotels, Ruby, HUALUXE Hotels & Resorts, Crowne Plaza Hotels & Resorts, EVEN Hotels Essentials: Holiday Inn Express, Holiday Inn Hotels & Resorts, Garner hotels, avid hotels Suites: Atwell Suites, Staybridge Suites, Holiday Inn Club Vacations, Candlewood Suites Exclusive Partners: Iberostar Beachfront Resorts InterContinental Hotels Group PLC is the Group's holding company and is incorporated and registered in England and Wales. Approximately 400,000 people work across IHG's hotels and corporate offices globally. Visit us online for more about our hotels and reservations and IHG One Rewards. To download the IHG One Rewards app, visit the Apple App or Google Play stores.

Mandarin Oriental

mandarinoriental.com

Mandarin Oriental Hotel Group is the award-winning owner and operator of some of the world’s most luxurious hotels, resorts and residences. Having grown from its Asian roots into a global brand, the Group now operates 43 hotels, 12 residences and 23 exclusive homes in 26 countries and territories, with each property reflecting the Group’s oriental heritage, local culture and unique design. Mandarin Oriental has a strong pipeline of hotels and residences under development and is a member of the Jardine Matheson Group. Mandarin Oriental’s aim is to be recognised widely as the best global luxury hotel group, providing 21st-century luxury with oriental charm in each of its hotels. This will be achieved by investing in the Group’s exceptional facilities and people while maximizing profitability and long-term shareholder value. The Group regularly receives recognition and awards for outstanding service and quality management. The strategy of the Group is to open the hotels currently under development while continuing to seek further selective opportunities for expansion around the world. The parent company, Mandarin Oriental International Limited, is incorporated in Bermuda and has a premium listing on the London Stock Exchange, with secondary listings in Bermuda and Singapore. Mandarin Oriental Hotel Group International Limited, which operates from Hong Kong, manages the activities of the Group’s hotels. Mandarin Oriental is a member of the Jardine Matheson Group.

Rotana Hotels

rotana.com

Since inception, Rotana has grown to be the region’s largest hospitality management company, and a brand that is widely recognized and admired. Rotana currently manages a portfolio of over 100 properties throughout the Middle East, Africa, Eastern Europe and Türkiye offering a wide range of services and products through its 6 sub brands; Rotana Hotels & Resorts for the 4 and 5 star properties, Arjaan Hotel Apartments for the long term stays, Rayhaan Hotels & Resorts, Rotana’s alcohol free 4 and 5 star properties, Centro Hotels, a 3 star plus affordable lifestyle brand, Edge by Rotana our collection of independent hotels and The Residences by Rotana, a brand developed for guests that are looking for a permanent home. If you are interested to join Rotana, kindly log on to www.rotanacareers.com and proceed with the online application and our Human Resources Team will look into your respective application.

Loading…

NEWS

Mövenpick Hotels & Resorts CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

February 03, 2026 04:52 AM

Make cherished memories this Ramadan at Mövenpick Grand Al Bustan Hotel & Convention Centre Dubai

Partner Content: Expect warm hospitality and sample local flavours. Make cherished memories this Ramadan at Mövenpick Grand Al Bustan Hotel...

Read Article

January 27, 2026 06:20 AM

9 Best Luxury Hotels In Hanoi In 2026 | NYT Style

Find a moment of respite from the city's hustle and bustle at one of Hanoi's most spectacular luxury hotels.

Read Article

January 24, 2026 08:33 AM

Hotel chain offering a daily hour of free desserts to finally open in the UK

For one hour every day, lobbies at more than 130 Mövenpick hotels transform into a scene that would make even Willy Wonka jealous.

Read Article

January 23, 2026 06:19 AM

Mövenpick Hotel Rebrands Golden Sands Creekside Property into a Premium Destination in Dubai’s Historic Waterfront Area – Everything You Need to Know About Dubai’s Newest Landmark

Mövenpick Dubai Creek opens its doors in Dubai, marking a new era in luxury hospitality along the historic waterfront, just minutes from...

Read Article

January 23, 2026 05:00 AM

Mövenpick launches at Dubai Creek after Golden Sands rebrand

Mövenpick Hotels & Resorts has expanded its UAE footprint with the opening of Mövenpick Dubai Creek, following the rebranding of the former...

Read Article

January 21, 2026 09:00 AM

Mövenpick grows Dubai portfolio with new hotel opening

Mövenpick Hotels & Resorts has strengthened its UAE footprint with the launch of Mövenpick Dubai Creek, following the rebrand of Golden...

Read Article

January 21, 2026 07:17 AM

MÖVENPICK DUBAI CREEK OPENS IN DUBAI’S HISTORIC HEART FOLLOWING THE REBRANDING OF GOLDEN SANDS HOTEL CREEK

The rebranded 150-room hotel brings Mövenpick's generous hospitality, convivial dining and joyful reconnection to one of the city's most...

Read Article

January 20, 2026 08:00 AM

Mövenpick Dubai Creek Unveils Luxurious Transformation, Bringing Swiss Hospitality and Exclusive Culinary Experiences to Dubai’s Iconic Waterfront

Mövenpick Hotels & Resorts has further strengthened its footprint in the United Arab Emirates with the opening of Mövenpick Dubai Creek.

Read Article

January 20, 2026 08:00 AM

Mövenpick Dubai Creek opens in Dubai’s historic heart following the rebranding of Golden Sands Hotel Creek

The rebranded 150-room hotel brings Mövenpick's generous hospitality, convivial dining and joyful reconnection to one of the city's most...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-8023

SUMMARY

Zephyr's HTTP server (subsys/net/lib/http) provides a static-filesystem resource type (HTTP_RESOURCE_TYPE_STATIC_FS, available when CONFIG_FILE_SYSTEM is enabled) that serves files from a configured root directory. Before this fix, both the HTTP/1 and HTTP/2 front-ends placed the raw, attacker-controlled request path into client-url_buffer (assembled in on_url() for HTTP/1 and copied verbatim from the :path pseudo-header for HTTP/2) without resolving ./.. segments. The static-FS handler then built the on-disk filename by directly concatenating the configured root with that raw URL (snprintk(fname, ..., "%s%s", static_fs_detail-fs_path, client-url_buffer) at http_server_http1.c:603 and http_server_http2.c:490) and opened it with fs_open(fname, FS_O_READ). Because the handler is reached via wildcard/leading-dir (fnmatch FNM_LEADING_DIR) or fallback resource matching, a request such as GET /<prefix/../../<file is dispatched to the handler and, after the underlying filesystem (e.g. LittleFS/FAT) resolves the .. segments, escapes the configured web root, letting an unauthenticated remote client read arbitrary readable files on the mounted volume (information disclosure). The HTTP server requires no TLS or authentication to reach this path. The fix adds http_server_remove_dot_segments(), which canonicalizes the path portion of the URL before resource lookup in both protocol handlers, neutralizing the traversal. Affects releases v4.0.0 through v4.4.0 for deployments that register a static-filesystem resource.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: 7.5)

cvss3

Base Score: 7.5

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Impact Score

3.6

Exploitability

3.9

REFERENCES

CVE-2026-7656

SUMMARY

The IPv6 Neighbor Discovery handlers in subsys/net/ip/ipv6_nbr.c (handle_ra_input, handle_ns_input, handle_na_input) used an incorrect boolean expression that combined the RFC 4861 validity checks with the ICMPv6 code check using the wrong operator precedence: the form was '((length/hop/source/target checks) && (icmp_hdr-code != 0))'. Because every legitimate ND message carries ICMPv6 code 0, an attacker setting code == 0 (the normal value) caused the entire predicate to evaluate false, so the packet was never dropped and all of the other checks were silently skipped. The bypassed checks include the mandatory Hop Limit == 255 verification (which proves an ND packet originated on-link and was not forwarded) and, for Router Advertisements, the requirement that the source be a link-local address, as well as multicast-target sanity checks. As a result, an adjacent on-link attacker — and, because the Hop-Limit-255 guard is bypassed, potentially a remote/off-link attacker whose packets would otherwise be rejected — can have forged Router Advertisement, Neighbor Solicitation, and Neighbor Advertisement messages accepted. A forged RA lets the attacker reconfigure the victim's default router, on-link prefixes (SLAAC), MTU, reachable/retransmit timers, and (with CONFIG_NET_IPV6_RA_RDNSS) DNS servers, while forged NS/NA enable neighbor-cache poisoning, enabling man-in-the-middle, traffic redirection, and denial of service. The flaw is an input-validation/authentication weakness rather than a memory-safety issue: the underlying packet-parsing primitives (net_pkt_get_data, net_pkt_read, net_pkt_skip) are independently bounds-safe and the validated 'length' is the true buffer length, so skipping the length check causes no out-of-bounds access. The defect has existed since the logic was introduced in 2018 and shipped in all releases through v4.4.0; it is fixed by splitting the condition so any failing check drops the packet.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: 8.1)

cvss3

Base Score: 8.1

Complexity: LOW

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

Impact Score

5.2

Exploitability

2.8

REFERENCES

CVE-2026-51219

SUMMARY

A heap buffer overflow in the HighPriorityASDUQueue_hasUnconfirmedIMessages function of lib60870 v2.3.3 to v2.3.6 allows attackers to cause a Denial of Service (DoS) via a crafted payload.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: )

Impact Score

Exploitability

REFERENCES

CVE-2026-51218

SUMMARY

A heap buffer overflow in the TS7Worker::PerformFunctionWrite() function (/core/s7_server.cpp) of snap7 v1.4.3 allows attackers to cause a Denial of Service (DoS) via a crafted packet.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: )

Impact Score

Exploitability

REFERENCES

CVE-2026-10648

SUMMARY

mcumgr_serial_process_frag() in subsys/mgmt/mcumgr/transport/src/serial_util.c calls net_buf_reset() on the result of smp_packet_alloc() before checking it for NULL. smp_packet_alloc() uses net_buf_alloc(K_NO_WAIT) against the shared MCUmgr packet pool (CONFIG_MCUMGR_TRANSPORT_NETBUF_COUNT, default 4), which returns NULL when the pool is exhausted. In default builds the __ASSERT_NO_MSG in net_buf_reset is a no-op, so net_buf_simple_reset writes through the NULL pointer (buf->len = 0; buf->data = buf->__buf), causing a fault/crash. The fragment data reaches this code from attacker-controlled bytes on the MCUmgr serial/UART/shell-console transports (smp_uart.c, smp_raw_uart.c, smp_shell.c), and a fresh buffer is allocated at the start of essentially every new packet. An attacker on the serial/console link can flood the transport to drive the 4-entry buffer pool to exhaustion and induce the NULL dereference, crashing the device (denial of service). The defect was introduced after the original MCUmgr rework and shipped in Zephyr v4.4.0. The fix moves the NULL check ahead of net_buf_reset.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: 6.2)

cvss3

Base Score: 6.2

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Impact Score

3.6

Exploitability

2.5

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…