What is the official website of Oracle ?

The official website of Oracle is http://www.oracle.com.

What is Oracle's cybersecurity risk score?

Oracle has an AI-generated cybersecurity risk score of 100 out of 1000, indicating a Critical security posture according to Rankiteo's assessment.

How many security incidents has Oracle experienced?

According to Rankiteo, Oracle currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Oracle been affected by any supply chain cyber incidents ?

According to Rankiteo, Oracle has been affected by multiple supply chain cyber incidents. The affected supply chain sources and their corresponding incident IDs are: Oracle (Incident ID: ORA1781526596) Oracle (Incident ID: ORA1781180663) Oracle (Incident ID: ORAUNI1781123069) Oracle (Incident ID: ORA1780418023) Oracle (Incident ID: TULORA1777415654) Snowflake (Incident ID: JONGENMCDGOL1775507547) Oracle (Incident ID: BROBECTHEORAABB1773750615) Oracle (Incident ID: NO-SHOPRELOB1773534483) Oracle (Incident ID: MSG1772483822) Oracle (Incident ID: MGMCAEORAWYN1771962331) Oracle (Incident ID: HYPORA1773686454) Oracle (Incident ID: CONDAVORASANASA1770645741) Oracle (Incident ID: DARHARPRICOLCLE1767881845) Oracle (Incident ID: MADMICKORORA1773232260) Oracle (Incident ID: ADIHEAHARMARTHEJAG1767017696) Microsoft Security (Incident ID: AMAORAMIC1770695748) Tencent Cloud (Incident ID: CLO1769705152) Oracle (Incident ID: ORAMSG1772238496) Snowflake (Incident ID: MEREQUUNIMAEMGMGOOTOYSNOALLORARIPTIC1775528897) Oracle (Incident ID: PRIORAUNI1766419165) Oracle (Incident ID: ORA1766435444) Oracle (Incident ID: NHS3432334111425) Oracle (Incident ID: BAR1765043770) BleepingComputer (Incident ID: F50032500101925) Oracle (Incident ID: ORAWIT1773930753) Oracle (Incident ID: ORAPAR1766015901) Oracle (Incident ID: TULORA1779078400) Oracle (Incident ID: MARORA1772484170) Oracle (Incident ID: COX53102453112425) Oracle (Incident ID: ORATHE1770237797) Salesloft (Incident ID: SAL0932309111025) Oracle (Incident ID: ANYSOT1770810849) Oracle (Incident ID: ORAHYP1773650183) Salesloft (Incident ID: ORA1692116100725) moveIT Software (Incident ID: ORA4202442101025) Oracle (Incident ID: JAG2592025111525) Oracle (Incident ID: BRO3105131112625) Oracle (Incident ID: ORA5662156100625) Oracle Health (Incident ID: ORA455040125) Oracle Health (Incident ID: ORA526032825) Salesforce (Incident ID: THEINGSALJAGORASYNDAV1769095448)

Does Oracle have SOC 2 Type 1 certification ?

According to Rankiteo, Oracle is not certified under SOC 2 Type 1.

Does Oracle have SOC 2 Type 2 certification ?

According to Rankiteo, Oracle does not hold a SOC 2 Type 2 certification.

Does Oracle comply with GDPR ?

According to Rankiteo, Oracle is not listed as GDPR compliant.

Does Oracle have PCI DSS certification ?

According to Rankiteo, Oracle does not currently maintain PCI DSS compliance.

Does Oracle comply with HIPAA ?

According to Rankiteo, Oracle is not compliant with HIPAA regulations.

Does Oracle have ISO 27001 certification ?

According to Rankiteo,Oracle is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Oracle operate in ?

Oracle operates primarily in the IT Services and IT Consulting industry.

How many employees does Oracle have ?

Oracle employs approximately 197,447 people worldwide.

Does Oracle own any subsidiaries ?

Oracle presently has no subsidiaries across any sectors.

How many LinkedIn followers does Oracle have ?

Oracle's official LinkedIn profile has approximately 11,005,980 followers.

What is the NAICS classification code for Oracle ?

Oracle is classified under the NAICS code 5415, which corresponds to Computer Systems Design and Related Services.

Does Oracle have a Crunchbase profile ?

No, Oracle does not have a profile on Crunchbase.

Does Oracle have a LinkedIn profile ?

Yes, Oracle maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/oracle.

How many cybersecurity incidents has Oracle experienced ?

As of June 15, 2026, Rankiteo reports that Oracle has experienced 62 cybersecurity incidents.

How many peer or competitor companies does Oracle have ?

Oracle has an estimated 40,690 peer or competitor companies worldwide.

What types of cybersecurity incidents has Oracle faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Ransomware, Breach, Vulnerability and Cyber Attack.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

Oracle

Boost Score +25 with badge (5 left)

100

/1000

Critical

125

/1000

Critical

Oracle Vendor Cyber Rating & Cyber Score

oracle.com

Add Your Compliance Badge

We’re a cloud technology company that provides organizations around the world with computing infrastructure and software to help them innovate, unlock efficiencies and become more effective. We also created the world’s first – and only – autonomous database to help organize and secure our customers’ data. Oracle Cloud Infrastructure offers higher performance, security, and cost savings. It is designed so businesses can move workloads easily from on-premises systems to the cloud, and between cloud and on-premises and other clouds. Oracle Cloud applications provide business leaders with modern applications that help them innovate, attain sustainable growth, and become more resilient. The work we do is not only transforming the world of

Oracle A.I CyberSecurity Scoring

Scoring History

Oracle

Oracle CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

Oracle

Vulnerability

100

6/2026

Oracle

ORA1781526596

Oracle

Vulnerability

100

6/2026

Oracle

ORA1781180663

Oracle

Cyber Attack

100

6/2026

Oracle

ORAUNI178112306...

Oracle

Vulnerability

100

6/2026

Oracle

ORA1780418023

Oracle

Breach

5/2026

METORATICBANYAH...

Oracle

Vulnerability

100

4/2026

Oracle

TULORA177741565...

Oracle

Breach

100

4/2026

ORABUS177558268...

Oracle

Breach

4/2026

Snowflake

JONGENMCDGOL177...

Oracle

Vulnerability

3/2026

ORA1774088623

Oracle

Cyber Attack

3/2026

Oracle

BROBECTHEORAABB...

Oracle

Breach

100

3/2026

Oracle

NO-SHOPRELOB177...

Oracle

Breach

3/2026

RAYORAFED177252...

Oracle

Breach

3/2026

Oracle

MSG1772483822

Oracle

Cyber Attack

2/2026

Oracle

MGMCAEORAWYN177...

Oracle

Ransomware

100

2/2026

Oracle

HYPORA177368645...

Oracle

Breach

2/2026

ORA1770195349

Oracle

Vulnerability

100

1/2026

ORA1768994894

Oracle

Ransomware

100

1/2026

Oracle

CONDAVORASANASA...

Oracle

Breach

1/2026

Oracle

DARHARPRICOLCLE...

Oracle

Breach

1/2026

Oracle

MADMICKORORA177...

Oracle

Cyber Attack

12/2025

Oracle

ADIHEAHARMARTHE...

Oracle Cloud

Cyber Attack

100

12/2025

Microsoft Secur...

AMAORAMIC177069...

Oracle Cloud

Cyber Attack

100

12/2025

Tencent Cloud

CLO1769705152

Oracle

Vulnerability

12/2025

Oracle

ORAMSG177223849...

Oracle

Ransomware

100

12/2025

Snowflake

MEREQUUNIMAEMGM...

Oracle

Cyber Attack

11/2025

Oracle

PRIORAUNI176641...

Oracle

Vulnerability

11/2025

Oracle

ORA1766435444

Oracle

Cyber Attack

100

11/2025

Oracle

NHS343233411142...

Oracle

Ransomware

100

11/2025

Oracle

BAR1765043770

Oracle Security

Breach

100

10/2025

BleepingCompute...

F50032500101925

Oracle

Cyber Attack

10/2025

Oracle

ORAWIT177393075...

Oracle

Vulnerability

10/2025

Oracle

ORAPAR176601590...

Oracle

Cyber Attack

9/2025

ORA805090225

Oracle

Breach

8/2025

Oracle

TULORA177907840...

Oracle

Vulnerability

8/2025

Oracle

MARORA177248417...

Oracle

Breach

100

8/2025

Oracle

COX531024531124...

Oracle

Vulnerability

8/2025

Oracle

ORATHE177023779...

Oracle

Breach

8/2025

Salesloft

SAL093230911102...

Oracle

Ransomware

100

8/2025

Oracle

ANYSOT177081084...

Oracle

Vulnerability

8/2025

Oracle

ORAHYP177365018...

Oracle Communicatio...

Ransomware

100

8/2025

Salesloft

ORA169211610072...

Oracle

Ransomware

100

7/2025

moveIT Software

ORA420244210102...

Oracle

Cyber Attack

100

7/2025

Oracle

JAG259202511152...

Oracle

Ransomware

100

6/2025

Oracle

BRO310513111262...

Oracle

Vulnerability

6/2025

ORA083260810142...

Oracle

Ransomware

100

5/2025

Oracle

ORA566215610062...

Oracle

Breach

100

4/2025

ORA656040225

Oracle Health

Breach

4/2025

Oracle Health

ORA455040125

Oracle

Breach

100

3/2025

ORA344032125

Oracle Health

Breach

1/2025

Oracle Health

ORA526032825

Oracle Cloud SCM

Ransomware

100

1/2025

Salesforce

THEINGSALJAGORA...

Oracle

Vulnerability

8/2024

ORA499324910062...

Oracle

Vulnerability

7/2024

ORA1780446221

Oracle

Ransomware

6/2024

ORA406214010022...

Oracle

Ransomware

100

1/2024

ORA109221010022...

Oracle

Ransomware

100

6/2023

ORA523325211212...

Oracle

Ransomware

100

1/2023

ORAMIC177555100...

Oracle

Breach

100

6/2021

ORA615032225

Oracle

Breach

100

6/2020

ORA956040325

Oracle

Ransomware

100

6/2019

ORA433274311212...

Oracle

Breach

100

08/2016

ORA392622

Oracle

Breach

7/2013

ORA720082025

Loading…

A.I.

Oracle Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for Oracle

Incidents vs IT Services and IT Consulting Industry Avg (This Year)

Oracle has 1207.19% more incidents than the average of same-industry companies with at least one recorded incident.

Incidents vs All-Companies Average (This Year)

Oracle has 1751.85% more incidents than the average of all companies with at least one recorded incident.

Incident Types Oracle vs IT Services and IT Consulting Industry Avg (This Year)

Oracle reported 20 incidents this year: 3 cyber attacks, 2 ransomware, 6 vulnerabilities, 9 data breaches, compared to industry peers with at least 1 incident.

Incident History - Oracle (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Oracle Subsidiaries

Oracle

IT Services and IT Consulting

Website: http://www.oracle.com

Company Size: 10,000+ employees

Oracle CommunicationsIT Services and IT Consulting

NetSuiteSoftware Development

Inside the SuiteSoftware Development

NetSuite Partner CommunitySoftware Development

NetSuite Sales Development Representative ProgramSoftware Development

Oracle CanadaIT Services and IT Consulting

Oracle Japan 日本オラクルInformation Technology & Services

AddThisTechnology, Information and Internet

Oracle AI DatabaseInformation Technology & Services

Oracle LinuxIT Services and IT Consulting

Oracle Local GovernmentTechnology, Information and Internet

Oracle Cloud HCMIT Services and IT Consulting

Loading…

Oracle Similar Companies

Wipro

wipro.com

Wipro Limited (NYSE: WIT, BSE: 507685, NSE: WIPRO) is a leading AI-powered technology services and consulting company focused on building innovative solutions that address clients’ most complex digital transformation needs. Leveraging our consulting-led approach and the Wipro Intelligence™ unified suite of AI-powered platforms, solutions, and transformative offerings, we help clients realize their boldest ambitions and build intelligent, sustainable businesses. The Wipro Innovation Network—part of the Wipro Intelligence™ suite—underpins our commitment to client-centric co-innovation and co-creation by bringing together capabilities from the innovation labs and partner ecosystems, academia, and global tech communities. With over 230,000 employees and business partners across 65 countries, we deliver on the promise of helping our customers, colleagues, and communities thrive in an ever-changing world.

Mphasis

mphasis.com

A leading applied technology services company, we innovate to deliver service excellence and successful outcomes across sales, delivery and development. With our strategy to be agile, nimble and customer-centric, we anticipate the future of applied technology and predict tomorrow’s trends to keep our clients at the summit in an ever-changing marketplace. Leading with architecture and design, our next-gen solutions enable enterprises to accelerate on their digital transformation journey. Customer centricity is foundational to us and is reflected in the Mphasis’ Front2Back™ (F2B) transformation approach. F2B is a customer-in view approach that uses our industry-specific X2C2TM framework, and harnesses the power of cognitive technologies and rich data resident in enterprises to transform them. It is a way to introduce disruptive technology to smartly transform legacy environments. . Mphasis’ Service Transformation approach helps ‘shrink the core’ through the application of digital technologies across legacy environments within an enterprise, enabling businesses to stay ahead in a changing world. Mphasis’ core reference architectures and tools, speed and innovation with domain expertise and specialization are key to building strong relationships with marquee clients. Click here to know more Mphasis Presents #HowGeekAreYou Passion, Perseverance, Perfection – we are defined by these three words. Relentless in our pursuit of knowledge, we believe in accepting the difference and defining the 'new normal', staying true to our vision and values. We believe in growth by knowledge, responsibility by authority and freedom by flexibility. Be a part of a place where ideas are celebrated and perseverance is worshiped. Our doors are wide open, and breakthrough ideas are welcome from anyone. But we have a question to ask before we let you in: How Geek Are You? Click here to know more.

Sogeti

sogeti.com

Part of the Capgemini Group, Sogeti makes business value through technology for organizations that need to implement innovation at speed and want a local partner with global scale. With a hands-on culture and close proximity to its clients, Sogeti implements solutions that will help organizations work faster, better, and smarter. By combining its agility and speed of implementation through a DevOps approach, Sogeti delivers innovative solutions in quality engineering, cloud and application development, all driven by AI, data and automation. For more information please visit www.sogeti.com.

Dimension Data

cb dimensiondata.com

Dimension Data is a leading African born technology provider operating in the Middle East and Africa, offering a portfolio of services including systems integration, managed services infrastructure, cloud solutions, business applications, customer experience, and intelligent security solutions. We provide innovative solutions that optimise today’s evolving technology environments, enabling clients to leverage data in a digital age. Founded in 1983, and headquartered in Johannesburg, Dimension Data is a proud member of the NTT Group, one of the world’s leading information communication technology (ICT) companies, comprising a group of global technology companies. In 2020, Dimension Data completed its transition to operate as one entity consolidating all its subsidiaries under a single Dimension Data brand employing over 10 000 employees across 15 countries. We continue to invest heavily in innovation bringing together the world’s best technologies, from consulting, technical and support services to a fully managed service. Dimension Data is currently a level 2 BBBEE contributor after successfully concluding a significant BBBEE transaction in 2019. Dimension Data will continue to implement strategies to ensure it contributes meaningfully to transformation towards an inclusive society.

NTT DATA, Inc.

global.ntt

NTT DATA, Inc. is a trusted global innovator of business and technology services. We're committed to helping clients innovate, optimize and transform for long-term success. Our R&D investments help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity.

Avanade

https://www.avanade.com/en?utm_campaign=nullgtmcam-ao&utm_source=linkedin&utm_medium=socor-glb&_bl=%7BcreativeId%7D

Avanade is the world’s leading expert on Microsoft. Trusted by over 7,000 clients worldwide, we deliver AI-driven solutions that unlock the full potential of people and technology, optimize operations, foster innovation and drive growth. As Microsoft’s Global SI Partner we combine global scale with local expertise in AI, cloud, data analytics, cybersecurity, and ERP to design solutions that prioritize people and drive meaningful impact. We champion diversity, inclusion, and sustainability, ensuring our work benefits society and business.

Canon EMEA

canon-europe.com

We are Canon Europe. We are the world's best imaging company. This page represents our offices in Europe, the Middle East and Africa. Founded in 1937, the desire to continuously innovate has kept Canon at the forefront of imaging excellence throughout its 85-year history and has commitments to invest in the right areas and capture growth opportunities. From cameras to commercial printers, and business consultancy to healthcare technologies, Canon enriches lives and businesses through imaging innovation. Canon’s corporate philosophy is Kyosei – ‘living and working together for the common good’. In EMEA, Canon Europe pursues sustainable business growth, focusing on reducing its own environmental impact and supporting customers to reduce theirs using Canon’s products, solutions and services. Canon Europe has operations in roughly 120 countries, with approximately 13,500 employees and contributes to around a quarter of Canon’s global revenues annually.

SoftServe

softserveinc.com

SoftServe is a premier IT consulting and digital services provider. We expand the horizon of new technologies to solve today's complex business challenges and achieve meaningful outcomes for our clients. Our boundless curiosity drives us to explore and reimagine the art of the possible. Clients confidently rely on SoftServe to architect and execute mature and innovative capabilities, such as digital engineering, data and analytics, cloud, and AI/ML. Our global reputation is gained from more than 30 years of experience delivering superior digital solutions at exceptional speed by top-tier engineering talent to enterprise industries, including high tech, financial services, healthcare, life sciences, retail, energy, and manufacturing. At SoftServe, we live by our values. Trust, teamwork, growth, innovation, willingness to help, and exceeding expectations are engrained in everything we do. We partner with major technology players, such as Google Cloud Platform, Amazon Web Services, Microsoft Azure, Salesforce, NVIDIA, MuleSoft, VMware, and Odoo, to give clients a competitive advantage in the market. Founded in 1993, our global firm is headquartered in Austin, Texas, USA, and Lviv, Ukraine. Visit our website, blog, media, and news pages for more information. Blog: softserveinc.com/blog Media: softserveinc.com/media News: softserveinc.com/news

Carelon Global Solutions India

carelonglobal.in

Carelon Global Solutions makes healthcare operations more practical, effective, and efficient. Our global team of more than 25K innovators drives growth, delivers exceptional support, and develops digital tools specifically for health plans, providers, and systems. Each day, our partners and experts from across the globe implement new ways to save time and money — so doctors can focus on care. Formerly known as Legato Health Technologies, Carelon Global Solutions is part of the Carelon family of brands and is a fully owned subsidiary of Elevance Health. Headquartered in the United States, Carelon Global Solutions has talented teams in India, Ireland, the Philippines, and Puerto Rico. Want to be part of something meaningful? Join our growing team. We believe that when bold talent meets limitless thinking, the possibilities are endless. As part of our India team, you’ll work alongside some of the best minds in the business to solve healthcare’s most complex challenges. You’ll be part of an exciting, fast-paced, and supportive company culture, where all associates receive: • Competitive pay. • Generous benefits. • Training, mentorship, and growth. • Hybrid workplace flexibility. • The opportunity to help others and make a difference. Follow our Carelon Global Solutions India LinkedIn page for the latest job postings and timely company news.

Loading…

NEWS

Oracle CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

May 13, 2026 07:20 PM

Oracle Risk and Controls – Helping enable confident decisions for enterprise resource planning success

PwC focuses on compliance across the Oracle landscape – helping companies with business controls, security, data governance, GRC applications, and controls...

Read Article

May 11, 2026 10:47 PM

AI-Accelerated Security: Guidance for Oracle Customers

Learn how Oracle customers can respond to an AI-accelerated security landscape by using product-specific guidance,...

Read Article

May 11, 2026 07:07 PM

5 Steps to Strengthen Cybersecurity Posture for Agentic ERP and HCM

Strengthen cybersecurity posture for agentic ERP and HCM with five practical steps for Oracle Fusion Applications.

Read Article

May 05, 2026 03:26 PM

Oracle will patch more often to counter AI cybersecurity threat

Oracle will follow SAP, Microsoft and other software vendors in issuing security patches monthly — but a week later than everyone else.

Read Article

April 30, 2026 07:00 AM

A cybersecurity harbinger: Oracle front-runs AI model threat with new customer security advisory

The Oracle notification outlines how next-generation AI models dramatically accelerate the discovery and exploitation of software...

Read Article

April 30, 2026 07:00 AM

Take Action Today: Protect Your Oracle Database Against AI-Enabled Cybersecurity Threats

AI-enabled cybersecurity threats are on the rise. Limit exposure to attacks by running Long Term Support Releases, Oracle Database 19c or...

Read Article

April 30, 2026 07:00 AM

Oracle Customer Success Services: Patching and Upgrade Center for Databases and Applications

CSS blog post on services to assist with upgrades and patching in light of the heightened AI-enabled cybersecurity threats.

Read Article

April 29, 2026 07:00 AM

Accelerating Vulnerability Detection and Response at Oracle

The latest generation of AI is transforming how software vulnerabilities are identified and fixed, increasing the speed and scale of...

Read Article

April 22, 2026 07:00 AM

Oracle Patches 450 Vulnerabilities With April 2026 CPU

The April 2026 Oracle CPU includes 481 new security patches addressing 450 unique CVEs across 28 product families.

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-12191

SUMMARY

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdrive/modeld/modeld.py of the component Pickle Module. The manipulation results in deserialization. The attack is only possible with local access. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date2026-06-14

Updated

Date2026-06-14

RISK INFORMATION (Score: 7.8)

cvss2

Base Score: 6.8

Complexity: LOW

AV:L/AC:L/Au:S/C:C/I:C/A:C

cvss3

Base Score: 7.8

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 7.1

Complexity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

1.8

REFERENCES

CVE-2026-12190

SUMMARY

A vulnerability has been found in Genspark AI Workspace App 2.8.4 on Android. This vulnerability affects unknown code of the component ai.mainfunc.genspark. The manipulation leads to improper authorization in handler for custom url scheme. The attack can only be performed from a local environment. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date2026-06-14

Updated

Date2026-06-14

RISK INFORMATION (Score: 5.3)

cvss2

Base Score: 4.3

Complexity: LOW

AV:L/AC:L/Au:S/C:P/I:P/A:P

cvss3

Base Score: 5.3

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 4.8

Complexity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

1.8

REFERENCES

CVE-2026-12189

SUMMARY

A flaw has been found in Moovit Bus & Public Transit App 1.18 on Android. This affects an unknown part of the component com.tranzmate. Executing a manipulation can lead to improper authorization in handler for custom url scheme. The attack can only be executed locally. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date2026-06-14

Updated

Date2026-06-14

RISK INFORMATION (Score: 5.3)

cvss2

Base Score: 4.3

Complexity: LOW

AV:L/AC:L/Au:S/C:P/I:P/A:P

cvss3

Base Score: 5.3

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 1.9

Complexity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

1.8

REFERENCES

CVE-2026-12188

SUMMARY

A vulnerability was detected in Grit42 Grit up to 0.11.0. Affected by this issue is some unknown functionality of the file modules/core/backend/app/controllers/concerns/grit/core/grit_entity_controller.rb of the component GritEntityController. Performing a manipulation results in sql injection. The attack may be initiated remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date2026-06-14

Updated

Date2026-06-14

RISK INFORMATION (Score: 6.3)

cvss2

Base Score: 6.5

Complexity: LOW

AV:N/AC:L/Au:S/C:P/I:P/A:P

cvss3

Base Score: 6.3

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 2.1

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

2.8

REFERENCES

CVE-2026-12187

SUMMARY

A security vulnerability has been detected in GL.iNet GL-MT3000 up to 4.4.5. Affected by this vulnerability is an unknown functionality of the file /usr/bin/one_click_upgrade of the component Online Firmware Upgrade Handler. Such manipulation leads to command injection. The attack can be launched remotely. The exploit has been disclosed publicly and may be used. Upgrading to version 4.7 addresses this issue. Upgrading the affected component is advised. The vendor was contacted early, responded in a very professional manner and quickly released a fixed version of the affected product.

Published

Date2026-06-14

Updated

Date2026-06-14

RISK INFORMATION (Score: 8.8)

cvss2

Base Score: 9.0

Complexity: LOW

AV:N/AC:L/Au:S/C:C/I:C/A:C

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 7.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

2.8

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…