Comparison Overview

Q: Between Novaya company and Varangis company, which one has the best AI Cybersecurity Score ?

Novaya company demonstrates a stronger AI Cybersecurity Score compared to Varangis company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Q: Between Novaya company and Varangis company, which one has experienced more cyber incidents in the past ?

Historically, Varangis company has disclosed a higher number of cyber incidents compared to Novaya company.

Q: Between Novaya company and Varangis company, which one has experienced more cyber incidents this year ?

In the current year, Varangis company and Novaya company have not reported any cyber incidents.

Q: Between Novaya company and Varangis company, which one has experienced at least one ransomware attack ?

Neither Varangis company nor Novaya company has reported experiencing a ransomware attack publicly.

Q: Between Novaya company and Varangis company, which one has experienced at least one data breach ?

Neither Varangis company nor Novaya company has reported experiencing a data breach publicly.

Q: Between Novaya company and Varangis company, which one has experienced at least one targeted cyberattack ?

Neither Varangis company nor Novaya company has reported experiencing targeted cyberattacks publicly.

Q: Between Novaya company and Varangis company, which one has experienced at least one vulnerability ?

Neither Novaya company nor Varangis company has reported experiencing or disclosing vulnerabilities publicly.

Q: Between Novaya company and Varangis company, which one holds the most compliance certifications ?

Neither Novaya nor Varangis holds any compliance certifications.

Q: Between Novaya company and Varangis company, which one has the most subsidiaries ?

Neither Novaya company nor Varangis company has publicly disclosed detailed information about the number of their subsidiaries.

Novaya

Grote Molstenstraat 21, Wielsbeke, Wielsbeke, BE, 8710

Last Update: 2025-11-21

View Profile

Between 750 and 799

https://www.novaya-comfort.com/

The best comfort solutions for bedding and seating, made from premium latex and advanced foam products. We strive for innovation, excellent service and sustainability leadership with your comfort in mind. Novaya is a global leader in latex production, leading the way with innovative technologies such as Dunlop, Pulse and Talalay latex. We have what it takes to produce the highest quality latex products, for your health, happiness and wellbeing. Our wide range of high-quality PU foams is uniquely developed to offer the best possible comfort solution. Novaya has a combined experience of over a century in latex and foam technologies. Continuous research and innovations in the industry make us the leader in comfort solutions.

NAICS: 337

NAICS Definition: Furniture and Related Product Manufacturing

Employees: 143

Subsidiaries: 0

12-month incidents

0

Known data breaches

0

Attack type number

0

View Profile

Varangis

38 Kifisias Avenue, Marousi, Attiki, 151 25, GR

Last Update: 2025-11-26

Between 750 and 799

http://www.varangis.com.gr

VARANGIS is a manufacturing company, specializing in the design and manufacture of fine furniture and bespoke home interiors, as well as the development and implementation of custom designs, including innovative work environments, professional space solutions in partnership with leading firms, advanced architectural materials, historic building restoration and turnkey interior architecture projects in the EU, the Balkans and the Persian Gulf. Moreover, VARANGIS has established a long track record in successfully completing high profile turnkey projects. Our specialized architects, industrial designers and project managers have the know-how to deliver innovative custom designs, optimizing production at competitive cost levels and organizing the work flow to meet our client’s requirements. Meticulous attention to detail is our key differentiating factor for each project phase; from initial design and space configuration to the sourcing of fixed and movable equipment for professional spaces, banking institutions, retail networks, state-of-the-art conference facilities, landmark buildings, exclusive hotels and luxurious mega-yacht interiors. Founded in Athens in 1900, as designers and makers of exclusive furniture and inspiring interiors, we continue on our long established tradition of continuous innovation, of constant exploration and relentless questioning of ideas and forms. Looking back in time, we discover the shapes of things to come.

NAICS: 337

NAICS Definition:

Employees: 12

Subsidiaries: 0

12-month incidents

0

Known data breaches

0

Attack type number

0

Novaya

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Varangis

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Furniture and Home Furnishings Manufacturing Industry Average (This Year)

No incidents recorded for Novaya in 2025.

Incidents vs Furniture and Home Furnishings Manufacturing Industry Average (This Year)

No incidents recorded for Varangis in 2025.

Incident History — Novaya (X = Date, Y = Severity)

Novaya cyber incidents detection timeline including parent company and subsidiaries

Incident History — Varangis (X = Date, Y = Severity)

Varangis cyber incidents detection timeline including parent company and subsidiaries

Novaya

Incidents

No Incident

Varangis

Incidents

No Incident

Novaya company demonstrates a stronger AI Cybersecurity Score compared to Varangis company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, Varangis company has disclosed a higher number of cyber incidents compared to Novaya company.

In the current year, Varangis company and Novaya company have not reported any cyber incidents.

Neither Varangis company nor Novaya company has reported experiencing a ransomware attack publicly.

Neither Varangis company nor Novaya company has reported experiencing a data breach publicly.

Neither Varangis company nor Novaya company has reported experiencing targeted cyberattacks publicly.

Neither Novaya company nor Varangis company has reported experiencing or disclosing vulnerabilities publicly.

Neither Novaya nor Varangis holds any compliance certifications.

Neither company holds any compliance certifications.

Neither Novaya company nor Varangis company has publicly disclosed detailed information about the number of their subsidiaries.

Novaya company employs more people globally than Varangis company, reflecting its scale as a Furniture and Home Furnishings Manufacturing.

Neither Novaya nor Varangis holds SOC 2 Type 1 certification.

Neither Novaya nor Varangis holds SOC 2 Type 2 certification.

Neither Novaya nor Varangis holds ISO 27001 certification.

Neither Novaya nor Varangis holds PCI DSS certification.

Neither Novaya nor Varangis holds HIPAA certification.

Neither Novaya nor Varangis holds GDPR certification.

Description

ThingsBoard in versions prior to v4.2.1 allows an authenticated user to upload malicious SVG images via the "Image Gallery", leading to a Stored Cross-Site Scripting (XSS) vulnerability. The exploit can be triggered when any user accesses the public API endpoint of the malicious SVG images, or if the malicious images are embedded in an `iframe` element, during a widget creation, deployed to any page of the platform (e.g., dashboards), and accessed during normal operations. The vulnerability resides in the `ImageController`, which fails to restrict the execution of JavaScript code when an image is loaded by the user's browser. This vulnerability can lead to the execution of malicious code in the context of other users' sessions, potentially compromising their accounts and allowing unauthorized actions.

Published

Date

2025-11-27

Updated

Date

2025-11-27

Risk Information

cvss4

Base: 6.2

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:H/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to to verify that the token used during the code exchange originates from the same authentication flow, which allows an authenticated user to perform account takeover via a specially crafted email address used when switching authentication methods and sending a request to the /users/login/sso/code-exchange endpoint. The vulnerability requires ExperimentalEnableAuthenticationTransfer to be enabled (default: enabled) and RequireEmailVerification to be disabled (default: disabled).

Published

Date

2025-11-27

Updated

Date

2025-11-27

Risk Information

cvss3

Base: 9.9

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

References

https://mattermost.com/security-updates

Description

Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to sanitize team email addresses to be visible only to Team Admins, which allows any authenticated user to view team email addresses via the GET /api/v4/channels/{channel_id}/common_teams endpoint

Published

Date

2025-11-27

Updated

Date

2025-11-27

Risk Information

cvss3

Base: 4.3

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

References

https://mattermost.com/security-updates

Description

Exposure of email service credentials to users without administrative rights in Devolutions Server.This issue affects Devolutions Server: before 2025.2.21, before 2025.3.9.

Published

Date

2025-11-27

Updated

Date

2025-11-27

References

https://devolutions.net/security/advisories/DEVO-2025-0018/

Description

Exposure of credentials in unintended requests in Devolutions Server.This issue affects Server: through 2025.2.20, through 2025.3.8.

Published

Date

2025-11-27

Updated

Date

2025-11-27

References

https://devolutions.net/security/advisories/DEVO-2025-0018/

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Novaya

VS

Varangis

Novaya

Varangis

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Furniture and Home Furnishings Manufacturing Industry Average (This Year)

Incidents vs Furniture and Home Furnishings Manufacturing Industry Average (This Year)

Incident History — Novaya (X = Date, Y = Severity)

Incident History — Varangis (X = Date, Y = Severity)

Notable Incidents

No Incident

No Incident

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2025-3261

Risk Information

CVE-2025-12421

Risk Information

CVE-2025-12559

Risk Information

CVE-2025-13765

CVE-2025-13758

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Novaya

VS

Varangis

Novaya

Varangis

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Furniture and Home Furnishings Manufacturing Industry Average (This Year)

Incidents vs Furniture and Home Furnishings Manufacturing Industry Average (This Year)

Incident History — Novaya (X = Date, Y = Severity)

Incident History — Varangis (X = Date, Y = Severity)

Notable Incidents

No Incident

No Incident

FAQ

Between Novaya company and Varangis company, which one has the best AI Cybersecurity Score ?

Between Novaya company and Varangis company, which one has experienced more cyber incidents in the past ?

Between Novaya company and Varangis company, which one has experienced more cyber incidents this year ?

Between Novaya company and Varangis company, which one has experienced at least one ransomware attack ?

Between Novaya company and Varangis company, which one has experienced at least one data breach ?

Between Novaya company and Varangis company, which one has experienced at least one targeted cyberattack ?

Between Novaya company and Varangis company, which one has experienced at least one vulnerability ?

Between Novaya company and Varangis company, which one holds the most compliance certifications ?

Between Novaya company and Varangis company, which one holds the fewest compliance certifications ?

Between Novaya company and Varangis company, which one has the most subsidiaries ?

Between Novaya company and Varangis company, which one has the largest number of employees ?

Between Novaya and Varangis, which company holds both SOC 2 Type 1 certifications ?

Between Novaya and Varangis, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — Novaya or Varangis ?

Which company is PCI DSS compliant — Novaya or Varangis ?

Between Novaya and Varangis, which company complies with HIPAA regulations for healthcare data ?

Between Novaya and Varangis, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2025-3261

Risk Information

CVE-2025-12421

Risk Information

CVE-2025-12559

Risk Information

CVE-2025-13765

CVE-2025-13758