What is the official website of OpenSSL Foundation ?

The official website of OpenSSL Foundation is https://openssl.foundation.

What is OpenSSL Foundation's cybersecurity risk score?

OpenSSL Foundation has an AI-generated cybersecurity risk score of 760 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has OpenSSL Foundation experienced?

According to Rankiteo, OpenSSL Foundation currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has OpenSSL Foundation been affected by any supply chain cyber incidents ?

According to Rankiteo, OpenSSL Foundation has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does OpenSSL Foundation have SOC 2 Type 1 certification ?

According to Rankiteo, OpenSSL Foundation is not certified under SOC 2 Type 1.

Does OpenSSL Foundation have SOC 2 Type 2 certification ?

According to Rankiteo, OpenSSL Foundation does not hold a SOC 2 Type 2 certification.

Does OpenSSL Foundation comply with GDPR ?

According to Rankiteo, OpenSSL Foundation is not listed as GDPR compliant.

Does OpenSSL Foundation have PCI DSS certification ?

According to Rankiteo, OpenSSL Foundation does not currently maintain PCI DSS compliance.

Does OpenSSL Foundation comply with HIPAA ?

According to Rankiteo, OpenSSL Foundation is not compliant with HIPAA regulations.

Does OpenSSL Foundation have ISO 27001 certification ?

According to Rankiteo,OpenSSL Foundation is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does OpenSSL Foundation operate in ?

OpenSSL Foundation operates primarily in the Non-profit Organizations industry.

How many employees does OpenSSL Foundation have ?

OpenSSL Foundation employs approximately 13 people worldwide.

Does OpenSSL Foundation own any subsidiaries ?

OpenSSL Foundation presently has no subsidiaries across any sectors.

How many LinkedIn followers does OpenSSL Foundation have ?

OpenSSL Foundation's official LinkedIn profile has approximately 1,702 followers.

What is the NAICS classification code for OpenSSL Foundation ?

OpenSSL Foundation is classified under the NAICS code 8135, which corresponds to Others.

Does OpenSSL Foundation have a Crunchbase profile ?

No, OpenSSL Foundation does not have a profile on Crunchbase.

Does OpenSSL Foundation have a LinkedIn profile ?

Yes, OpenSSL Foundation maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/openssl-foundation.

How many cybersecurity incidents has OpenSSL Foundation experienced ?

As of June 21, 2026, Rankiteo reports that OpenSSL Foundation has experienced 1 cybersecurity incidents.

How many peer or competitor companies does OpenSSL Foundation have ?

OpenSSL Foundation has an estimated 22,449 peer or competitor companies worldwide.

What types of cybersecurity incidents has OpenSSL Foundation faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Vulnerability.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

OpenSSL Foundation

Boost Score +25 with badge (5 left)

760

/1000

Fair

785

/1000

Fair

OpenSSL Foundation Vendor Cyber Rating & Cyber Score

openssl.foundation

Add Your Compliance Badge

The OpenSSL Foundation believes that everyone, no matter who they are or where they live, deserves online privacy and security as a basic right. We support tools that are the backbone of a safe and free internet — so that nonprofits, academics, companies, and individual users can protect their data and communicate securely. Expanding data privacy and secure connections means that more people have access to the knowledge, creativity, culture, and expression that allows them to live the lives they choose. From economic prosperity to thriving culture, our future depends on secure connections. You can help build that future — learn more at openssl.foundation.

OpenSSL Foundation A.I CyberSecurity Scoring

Scoring History

OpenSSL Foundation

OpenSSL Foundation CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

OpenSSL Foundation

Vulnerability

6/2014

OPE312081425

Loading…

A.I.

OpenSSL Foundation Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for OpenSSL Foundation

Incidents vs Non-profit Organizations Industry Avg (This Year)

No incidents recorded for OpenSSL Foundation in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for OpenSSL Foundation in 2026.

Incident Types OpenSSL Foundation vs Non-profit Organizations Industry Avg (This Year)

No incidents recorded for OpenSSL Foundation in 2026.

Incident History - OpenSSL Foundation (X = Date, Y = Severity)

Loading…

SUBSIDIARY

OpenSSL Foundation Subsidiaries

Parent Company

OpenSSL Foundation

Non-profit Organizations

Website: https://openssl.foundation

Company Size: 2-10 employees

No subsidiary data available for this company.

Loading…

OpenSSL Foundation Similar Companies

YMCA of the USA

ymca.org

YMCA of the USA is the national resource office for the nation's YMCAs. Located in Chicago, IL, YMCA of the USA exists to serve YMCAs. To address the specific needs of communities, each YMCA is an independent organization, autonomous and separate from YMCA of the USA. They are required by the national constitution to pay annual dues, to refrain from discrimination and to support the YMCA mission. All other decisions are local choices, including programs offered, staffing and style of operation. Learn, Grow and Thrive with a Career at the Y Imagine going to work knowing that what you do each day positively affects the lives of the people in your community. Working at the Y, you'll discover more than a job-you'll enjoy a career with a future and the opportunity to make a lasting difference in the lives of those around you. Our staff members-of all ages and backgrounds and life experiences-enjoy the personal satisfaction that comes from nurturing the potential of youth and teens, improving the nation's health and well-being and providing support to our neighbors. The Y ensures that everyone has the opportunity to become healthier, more confident, connected and secure. Search for open positions at Ys across the U.S.: https://www.ymca.org/get-involved/careers/opportunities/open-positions

Colsubsidio

colsubsidio.com

Colsubsidio es una empresa privada sin ánimo de lucro que hace parte del Sistema de Protección y Seguridad Social en Colombia. Entendemos a las personas como seres integrales, con necesidades diversas y en constante transformación. Por eso, trabajamos para construir oportunidades a través de servicios en salud, educación, recreación, empleo, vivienda y subsidios. Creemos en el talento como motor del país y trabajamos para atraer y acompañar a quienes buscan construir una carrera con propósito. Haz parte de una de las empresas más relevantes, estables y en crecimiento del país. 🌐 Conoce más de nuestra labor : Facebook: https://www.facebook.com/ColsubsidioInfo YouTube: https://www.youtube.com/c/ColsubsidioInfo X (Twitter): https://twitter.com/Colsubsidio_Ofi

Goodwill Industries International

cb goodwill.org

Goodwill Industries is all about people working. We are North America’s leading nonprofit provider of education, training, and career services for people with disadvantages, such as welfare dependency, homelessness, and lack of education or work experience, as well as those with physical, mental and emotional disabilities. We believe that work has the power to transform lives by building self-confidence, independence, creativity, trust and friendships. Everyone deserves a chance to have these. Goodwill provides that chance. Considering working at Goodwill? Goodwill is nonprofit brand that is respected and highly relevant in today’s economy. Forbes recently named Goodwill one of the "Top 25 Most Inspiring Companies."

CASA DE LA FAMILIA

casadelafamilia.org

Casa de la Familia (CDLF) is a 501(c)(3) non-profit organization founded in 1996 by Clinical Psychologist Dr. Ana Nogales whose vision was to create an organization dedicated to ensuring long-lasting mental health success of children, youth, and families in response to psychological trauma. We provide our services at little to no cost to make mental health care more accessible. Our services include individual counseling, family counseling, group counseling, support groups, advocacy, crisis intervention, and outreach to Los Angeles, Riverside, San Bernardino, and Orange Counties. Our mission is to provide mental health services to children, adolescents, and adults in communities de-prioritized by the traditional mental health system, particularly those with a history of trauma. Our non-governmental organization offers therapy, support, and resources to those who need it most.

TED Conferences

TED.com

TED’s mission is to discover and champion the ideas that will shape tomorrow. Powerful ideas, powerfully presented, can move us to feel something, to think differently, to take action and create a brighter future. TED finds these powerful ideas across disciplines and around the globe, from people who passionately seek a deeper understanding of the world and want to make a difference in it. TED’s spotlight, and its engaged, open-minded audience, help these ideas to create real impact: to shift one person’s perspective, to make a difference within a community or to spark global transformation. Ideas change everything.

AIESEC

aiesec.org

AIESEC develops leadership among youth aged 18 to 30 and contributes to strengthening the global employability market by providing an end-to-end international talent recruitment solution for Enterprises, NGOs, and Start-ups. AIESEC is the world's largest youth-run organization developing the leadership potential of young people. Present in 120+ countries and territories across 2600 universities, we provide students and recent graduates with life-changing experiences to intern or volunteer abroad within partner organizations. We partner with organizations ranging from Fortune 500 to local enterprises in developing and sourcing their global talent needs across our network. Through our programs in universities, we provide organizations with access to a global network of young talent who have the capabilities to make a positive impact. For the last seven decades, we have developed over one million leaders ranging from business, civil society, and world leaders, including one Nobel Peace Prize Laureate. Learn more about us at - http://partners.aiesec.org

World Vision

wvi.org

World Vision is the largest child-focused private charity in the world. Our 33,000+ staff members working in nearly 100 countries have united with our incredible supporters to impact the lives of over 200 million vulnerable children by tackling the root causes of poverty. Through World Vision every 60 seconds…a family gets water…a hungry child is fed…a family receives the tools to overcome poverty. Motivated by our faith and guided by our deep experience and expertise, we are a Christian humanitarian, development and advocacy organisation devoted to improving the lives of children, families and their communities around the world and creating lasting impact that will live on in generations to come. We serve all people, regardless of religion, race, ethnicity, or gender.

UNICEF

unicef.org

UNICEF works in some of the world’s toughest places, to reach the world’s most disadvantaged children. To save their lives. To defend their rights. To help them fulfill their potential. Across 190 countries and territories, we work for every child, everywhere, every day, to build a better world for everyone. And we never give up.

Médecins Sans Frontières (MSF)

msf.org

Médecins Sans Frontières (MSF) is an international, independent, medical humanitarian organisation working to provide medical assistance to people affected by conflict, epidemics, disasters, or exclusion from healthcare. Since our founding in 1971, we’ve grown to a global movement delivering humanitarian assistance in over 70 countries. Thanks to our 7 million individual donors, our work remains impartial and independent. Read more about us on msf.org

Loading…

NEWS

OpenSSL Foundation CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

March 03, 2026 08:49 PM

The OpenSSL Corporation and the OpenSSL Foundation Celebrate the Success of the Inaugural OpenSSL Conference in Prague

Oct. 22, 2025 / PRZen / PRAGUE & NEWARK, Del. — The OpenSSL Corporation and the OpenSSL Foundation celebrate the success of the inaugural OpenSSL Conference...

Read Article

February 05, 2026 08:00 AM

OpenSSL 3 performance issues causing a scalability and security dilemma for organizations

One of the great things about open source is the availability of diverse approaches. This article examines the critical importance of...

Read Article

February 02, 2026 08:00 AM

12 OpenSSL bugs survived since the 90s until AI finally showed up

Some of these flaws persisted since 1998, which highlights the limits of human review even in heavily scrutinized projects.

Read Article

January 27, 2026 08:00 AM

AISLE Researchers Identify 12 New Security Vulnerabilities in OpenSSL Using AI-Driven Discovery

Vulnerabilities affect cryptographic software that is widely deployed across global infrastructure, enabling remote code execution,...

Read Article

October 03, 2025 07:00 AM

OpenSSL 3.6.0: What’s New, What’s Deprecated, and What It Means for Crypto & Development

Read Article

November 19, 2024 08:00 AM

AlmaLinux 9.5 released: Security updates, new packages, and more!

AlmaLinux is a free, open-source, enterprise-grade Linux distribution. Governed and owned by the community, it offers a production-ready...

Read Article

February 06, 2024 08:00 AM

Recent SSRF Flaw in Ivanti VPN Products Undergoes Mass Exploitation

A recently disclosed server-side request forgery (SSRF) vulnerability impacting Ivanti Connect Secure and Policy Secure products has come under mass...

Read Article

April 25, 2023 07:00 AM

Apache Superset: A story of insecure default keys, thousands of vulnerable systems, few paying attention

Apache Superset until earlier this year shipped with an insecure default configuration that miscreants could exploit to login and take over the data...

Read Article

June 28, 2022 07:00 AM

OpenSSL subject to remote memory corruption

A security researcher has sparked controversy in the OpenSSL community, claiming he has found a security vulnerability in a version released...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-56355

SUMMARY

GNU Savannah Administration Savane through 3.17 uses untrusted data as part of authorization.

Published

Date2026-06-20

Updated

Date2026-06-20

RISK INFORMATION (Score: 3.7)

cvss3

Base Score: 3.7

Complexity: HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

Impact Score

1.4

Exploitability

2.2

REFERENCES

CVE-2026-56347

SUMMARY

AVideo TopMenu plugin through version 26.0 contains a stored cross-site scripting vulnerability in menu item rendering due to missing output encoding of icon classes, URLs, and text labels. Attackers can inject malicious JavaScript through unescaped menu item fields that execute for all site visitors, potentially stealing session cookies or performing unauthorized actions.

Published

Date2026-06-20

Updated

Date2026-06-20

RISK INFORMATION (Score: 6.1)

cvss3

Base Score: 6.1

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

cvss4

Base Score: 5.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

2.7

Exploitability

2.8

REFERENCES

CVE-2026-56346

SUMMARY

AVideo through version 25.0 contains an authentication bypass vulnerability in the decryptMessage.json.php endpoint that allows unauthenticated users to decrypt PGP messages. Remote attackers can submit private keys, ciphertext, and passphrases to perform server-side decryption without credentials, exposing key material to logs and enabling resource exhaustion attacks.

Published

Date2026-06-20

Updated

Date2026-06-20

RISK INFORMATION (Score: 6.5)

cvss3

Base Score: 6.5

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

cvss4

Base Score: 6.9

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

2.5

Exploitability

3.9

REFERENCES

CVE-2026-56345

SUMMARY

AVideo through 29.0 contains an authorization bypass vulnerability in the Meet plugin's uploadRecordedVideo.json.php endpoint that derives the target users_id from the uploaded filename without verification. An attacker with knowledge of the Meet shared secret can craft a malicious file upload with a filename containing an arbitrary users_id to invoke passwordless User->login() and establish an authenticated session as any user including admin. Attackers can obtain the Meet shared secret through path-traversal vulnerabilities or timing attacks against checkToken.json.php, then POST a crafted file to uploadRecordedVideo.json.php with a filename like '1-anything.mp4' to hijack admin sessions and gain full account takeover.

Published

Date2026-06-20

Updated

Date2026-06-20

RISK INFORMATION (Score: 8.1)

cvss3

Base Score: 8.1

Complexity: HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 9.2

Complexity: HIGH

CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

2.2

REFERENCES

CVE-2026-56342

SUMMARY

AVideo through version 27.0 contains a server-side request forgery vulnerability in plugin/Live/test.php that allows authenticated administrators to read arbitrary URLs via the statsURL parameter, which lacks isSSRFSafeURL() validation and accepts requests to private IP ranges and cloud metadata endpoints. Attackers can exploit this by crafting requests to internal services, cloud metadata endpoints like 169.254.169.254, and localhost to retrieve sensitive information including IAM credentials, internal service responses, and network configuration details.

Published

Date2026-06-20

Updated

Date2026-06-20

RISK INFORMATION (Score: 6.8)

cvss3

Base Score: 6.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N

cvss4

Base Score: 6.1

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

2.3

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…