Comparison Overview

Northwest College of Art & Design

VS

Zavial

Northwest College of Art & Design

1126 Pacific Ave, Tacoma, Washington, US
Last Update: 2025-12-03
View Profile
Between 750 and 799
http://www.ncad.edu

Founded in 1982 by Craig Freeman as Northwest Art Center, NCAD has been since its beginning a specialized school of art. Originally located on the waterfront of Liberty Bay, Northwest College of Art & Design began its journey with a small student body and a two-year certificate program. As the years went by the College grew in size and the demand for a degree program prompted the Founder to expand the curriculum. Today, NCAD continues its history of positive growth and change. In early 2017, the college purchased a building in downtown Tacoma, WA. Starting in September of 2017, Tacoma is the new home to NCAD. Over the years, NCAD has maintained its mission to educate and prepare individuals for creative careers. We invite you to be a part of our exciting and challenging future. The B.F.A. degree program in Visual Communication is 9 semesters (4.5 academic years) and is typically completed in 36 months. The program is considered a full time program. DOUBLE MAJOR COMBINATIONS IN THE B.F.A. DEGREE PROGRAM IN VISUAL COMMUNICATION Graphic Design & Illustration Graphic Design & Interactive Design Graphic Design & Motion Design Entertainment Art & Interactive Design Motion Design & Interactive Design NCAD’s accelerated and highly structured sequential B.F.A. program does not lend itself to flexibility in terms of alternative scheduling. Instead, students’ schedules are set each term so they have access every semester to the classes needed to graduate on time. Specialties Graphic Design, Illustration, Interactive Design, Photography, Entertainment Art, Motion Design

NAICS: 54143
NAICS Definition: Graphic Design Services
Employees: 42
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

Zavial

Long Barn, Ilminster, TA19 9DX, GB
Last Update: 2025-12-02
Between 750 and 799
https://www.zavial.com

We are a marketing and design agency that adds value to businesses through clear and engaging branding, print and website design. Everything we create has a purpose and meaning that connects people with your business. For over a decade we have been working with individuals and global brands, forging ongoing trusted relationships. We love nothing more than helping a brand find its voice, tell its story, resonate with its audience and fulfil its potential. We communicate your brand seamlessly across multiple channels for maximum impact. Whether it’s in pixel or in print, it works and delivers the right message.

NAICS: 54143
NAICS Definition: Graphic Design Services
Employees: 2
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/northwest-college-of-art-&-design.jpeg
Northwest College of Art & Design
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/zavial.jpeg
Zavial
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Northwest College of Art & Design
100%
Compliance Rate
0/4 Standards Verified
Zavial
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Graphic Design Industry Average (This Year)

No incidents recorded for Northwest College of Art & Design in 2025.

Incidents vs Graphic Design Industry Average (This Year)

No incidents recorded for Zavial in 2025.

Incident History — Northwest College of Art & Design (X = Date, Y = Severity)

Northwest College of Art & Design cyber incidents detection timeline including parent company and subsidiaries

Incident History — Zavial (X = Date, Y = Severity)

Zavial cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/northwest-college-of-art-&-design.jpeg
Northwest College of Art & Design
Incidents

No Incident

https://images.rankiteo.com/companyimages/zavial.jpeg
Zavial
Incidents

No Incident

FAQ

Both Northwest College of Art & Design company and Zavial company demonstrate a comparable AI Cybersecurity Score, with strong governance and monitoring frameworks in place.

Historically, Zavial company has disclosed a higher number of cyber incidents compared to Northwest College of Art & Design company.

In the current year, Zavial company and Northwest College of Art & Design company have not reported any cyber incidents.

Neither Zavial company nor Northwest College of Art & Design company has reported experiencing a ransomware attack publicly.

Neither Zavial company nor Northwest College of Art & Design company has reported experiencing a data breach publicly.

Neither Zavial company nor Northwest College of Art & Design company has reported experiencing targeted cyberattacks publicly.

Neither Northwest College of Art & Design company nor Zavial company has reported experiencing or disclosing vulnerabilities publicly.

Neither Northwest College of Art & Design nor Zavial holds any compliance certifications.

Neither company holds any compliance certifications.

Neither Northwest College of Art & Design company nor Zavial company has publicly disclosed detailed information about the number of their subsidiaries.

Northwest College of Art & Design company employs more people globally than Zavial company, reflecting its scale as a Graphic Design.

Neither Northwest College of Art & Design nor Zavial holds SOC 2 Type 1 certification.

Neither Northwest College of Art & Design nor Zavial holds SOC 2 Type 2 certification.

Neither Northwest College of Art & Design nor Zavial holds ISO 27001 certification.

Neither Northwest College of Art & Design nor Zavial holds PCI DSS certification.

Neither Northwest College of Art & Design nor Zavial holds HIPAA certification.

Neither Northwest College of Art & Design nor Zavial holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

vLLM is an inference and serving engine for large language models (LLMs). Prior to 0.11.1, vllm has a critical remote code execution vector in a config class named Nemotron_Nano_VL_Config. When vllm loads a model config that contains an auto_map entry, the config class resolves that mapping with get_class_from_dynamic_module(...) and immediately instantiates the returned class. This fetches and executes Python from the remote repository referenced in the auto_map string. Crucially, this happens even when the caller explicitly sets trust_remote_code=False in vllm.transformers_utils.config.get_config. In practice, an attacker can publish a benign-looking frontend repo whose config.json points via auto_map to a separate malicious backend repo; loading the frontend will silently run the backend’s code on the victim host. This vulnerability is fixed in 0.11.1.

Published
Date
2025-12-01
Updated
Date
2025-12-01
Risk Information
cvss3
Base: 7.1
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
References
Description

fastify-reply-from is a Fastify plugin to forward the current HTTP request to another server. Prior to 12.5.0, by crafting a malicious URL, an attacker could access routes that are not allowed, even though the reply.from is defined for specific routes in @fastify/reply-from. This vulnerability is fixed in 12.5.0.

Published
Date
2025-12-01
Updated
Date
2025-12-01
Risk Information
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 21.0.2, 20.3.15, and 19.2.17, A Stored Cross-Site Scripting (XSS) vulnerability has been identified in the Angular Template Compiler. It occurs because the compiler's internal security schema is incomplete, allowing attackers to bypass Angular's built-in security sanitization. Specifically, the schema fails to classify certain URL-holding attributes (e.g., those that could contain javascript: URLs) as requiring strict URL security, enabling the injection of malicious scripts. This vulnerability is fixed in 21.0.2, 20.3.15, and 19.2.17.

Published
Date
2025-12-01
Updated
Date
2025-12-01
Risk Information
cvss4
Base: 8.5
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Gin-vue-admin is a backstage management system based on vue and gin. In 2.8.6 and earlier, attackers can delete any file on the server at will, causing damage or unavailability of server resources. Attackers can control the 'FileMd5' parameter to delete any file and folder.

Published
Date
2025-12-01
Updated
Date
2025-12-01
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Portkey.ai Gateway is a blazing fast AI Gateway with integrated guardrails. Prior to 1.14.0, the gateway determined the destination baseURL by prioritizing the value in the x-portkey-custom-host request header. The proxy route then appends the client-specified path to perform an external fetch. This can be maliciously used by users for SSRF attacks. This vulnerability is fixed in 1.14.0.

Published
Date
2025-12-01
Updated
Date
2025-12-01
Risk Information
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References