Comparison Overview

Oracle University

2300 Oracle Way, Austin, 78741, US

Last Update: 2025-12-22

Between 750 and 799

https://www.oracle.com/education/

Upskill and enhance your Oracle proficiency, get Oracle certified to increase your employability and accelerate Oracle SaaS adoption with Oracle University learning content and adoption platforms. Follow us to: ✅ Be the first to hear about discounts in learning paths and certification ✅ Join the discussion on the latest trends in digital adoption and training ✅ Learn about new digital learning opportunities for Oracle solutions ✅ Get access to free Oracle learning resources

NAICS: 5415

NAICS Definition: Computer Systems Design and Related Services

Employees: None

Subsidiaries: 31

12-month incidents

1

Known data breaches

9

Attack type number

4

View Profile

Tietoevry

Helsinki, Finland, FI, FI-02101

Last Update: 2025-12-17

Between 700 and 749

https://www.tietoevry.com

In a rapidly changing world, technology is everything. It's in the fabric of society. In every part of every business. At the very heart of human evolution. It’s a great power that comes with great responsibility. At Tietoevry, we believe it’s time to shift perspective. It’s not about what technology can do anymore — but what it should. So that the futures of businesses, societies, and humanity can live and thrive. Side by side. This is why we're making it our business to create purposeful technology that reinvents the world for good. https://www.tietoevry.com/en/ #purposefultechnology #Tietoevry

NAICS: 5415

NAICS Definition: Computer Systems Design and Related Services

Employees: 11,254

Subsidiaries: 0

12-month incidents

0

Known data breaches

0

Attack type number

1

Oracle University

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Tietoevry

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs IT Services and IT Consulting Industry Average (This Year)

Oracle University has 33.33% more incidents than the average of same-industry companies with at least one recorded incident.

Incidents vs IT Services and IT Consulting Industry Average (This Year)

No incidents recorded for Tietoevry in 2025.

Incident History — Oracle University (X = Date, Y = Severity)

Oracle University cyber incidents detection timeline including parent company and subsidiaries

Incident History — Tietoevry (X = Date, Y = Severity)

Tietoevry cyber incidents detection timeline including parent company and subsidiaries

Oracle University

Incidents

Date Detected: 11/2025

Type:Breach

Attack Vector: Phishing, Software Vulnerability Exploitation

Motivation: Financial Gain, Espionage

Blog: Blog

Date Detected: 11/2025

Type:Vulnerability

Attack Vector: Exploitation of software vulnerability

Blog: Blog

Date Detected: 11/2025

Type:Cyber Attack

Attack Vector: Exploitation of zero-day vulnerability (CVE-2025-61882)

Motivation: Extortion, Data Theft

Blog: Blog

Tietoevry

Incidents

Date Detected: 02/2021

Type:Ransomware

Blog: Blog

Oracle University company demonstrates a stronger AI Cybersecurity Score compared to Tietoevry company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Oracle University company has faced a higher number of disclosed cyber incidents historically compared to Tietoevry company.

In the current year, Oracle University company has reported more cyber incidents than Tietoevry company.

Both Tietoevry company and Oracle University company have confirmed experiencing at least one ransomware attack.

Oracle University company has disclosed at least one data breach, while the other Tietoevry company has not reported such incidents publicly.

Oracle University company has reported targeted cyberattacks, while Tietoevry company has not reported such incidents publicly.

Oracle University company has disclosed at least one vulnerability, while Tietoevry company has not reported such incidents publicly.

Neither Oracle University nor Tietoevry holds any compliance certifications.

Neither company holds any compliance certifications.

Oracle University company has more subsidiaries worldwide compared to Tietoevry company.

Neither Oracle University nor Tietoevry holds SOC 2 Type 1 certification.

Neither Oracle University nor Tietoevry holds SOC 2 Type 2 certification.

Neither Oracle University nor Tietoevry holds ISO 27001 certification.

Neither Oracle University nor Tietoevry holds PCI DSS certification.

Neither Oracle University nor Tietoevry holds HIPAA certification.

Neither Oracle University nor Tietoevry holds GDPR certification.

Description

Marshmallow is a lightweight library for converting complex objects to and from simple Python datatypes. In versions from 3.0.0rc1 to before 3.26.2 and from 4.0.0 to before 4.1.2, Schema.load(data, many=True) is vulnerable to denial of service attacks. A moderately sized request can consume a disproportionate amount of CPU time. This issue has been patched in version 3.26.2 and 4.1.2.

Published

Date

2025-12-22

Updated

Date

2025-12-22

Risk Information

cvss3

Base: 5.3

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

References

Description

KEDA is a Kubernetes-based Event Driven Autoscaling component. Prior to versions 2.17.3 and 2.18.3, an Arbitrary File Read vulnerability has been identified in KEDA, potentially affecting any KEDA resource that uses TriggerAuthentication to configure HashiCorp Vault authentication. The vulnerability stems from an incorrect or insufficient path validation when loading the Service Account Token specified in spec.hashiCorpVault.credential.serviceAccount. An attacker with permissions to create or modify a TriggerAuthentication resource can exfiltrate the content of any file from the node's filesystem (where the KEDA pod resides) by directing the file's content to a server under their control, as part of the Vault authentication request. The potential impact includes the exfiltration of sensitive system information, such as secrets, keys, or the content of files like /etc/passwd. This issue has been patched in versions 2.17.3 and 2.18.3.

Published

Date

2025-12-22

Updated

Date

2025-12-22

Risk Information

cvss4

Base: 8.2

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

Fedify is a TypeScript library for building federated server apps powered by ActivityPub. Prior to versions 1.6.13, 1.7.14, 1.8.15, and 1.9.2, a Regular Expression Denial of Service (ReDoS) vulnerability exists in Fedify's document loader. The HTML parsing regex at packages/fedify/src/runtime/docloader.ts:259 contains nested quantifiers that cause catastrophic backtracking when processing maliciously crafted HTML responses. This issue has been patched in versions 1.6.13, 1.7.14, 1.8.15, and 1.9.2.

Published

Date

2025-12-22

Updated

Date

2025-12-22

Risk Information

cvss3

Base: 7.5

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References

Description

Authenticated Remote Code Execution (RCE) in PluXml CMS 5.8.22 allows an attacker with administrator panel access to inject a malicious PHP webshell into a theme file (e.g., home.php).

Published

Date

2025-12-22

Updated

Date

2025-12-22

Risk Information

cvss3

Base: 6.5

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

References

Description

An issue was discovered in Xiongmai XM530 IP cameras on firmware V5.00.R02.000807D8.10010.346624.S.ONVIF 21.06. The GetStreamUri exposes RTSP URIs containing hardcoded credentials enabling direct unauthorized video stream access.

Published

Date

2025-12-22

Updated

Date

2025-12-22

Risk Information

cvss3

Base: 7.5

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

References

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Oracle University

VS

Tietoevry

Oracle University

Tietoevry

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs IT Services and IT Consulting Industry Average (This Year)

Incidents vs IT Services and IT Consulting Industry Average (This Year)

Incident History — Oracle University (X = Date, Y = Severity)

Incident History — Tietoevry (X = Date, Y = Severity)

Notable Incidents

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2025-68480

Risk Information

CVE-2025-68476

Risk Information

CVE-2025-68475

Risk Information

CVE-2025-67436

Risk Information

CVE-2025-65857

Risk Information

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Oracle University

VS

Tietoevry

Oracle University

Tietoevry

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs IT Services and IT Consulting Industry Average (This Year)

Incidents vs IT Services and IT Consulting Industry Average (This Year)

Incident History — Oracle University (X = Date, Y = Severity)

Incident History — Tietoevry (X = Date, Y = Severity)

Notable Incidents

🔒 Incident : Breach PRIHARDARCOLORA1765173096

🔒 Incident : Vulnerability ORA1766435444

🔒 Incident : Cyber Attack PRIORAUNI1766419165

🔒 Incident : Ransomware TIE224771222

FAQ

Between Oracle University company and Tietoevry company, which one has the best AI Cybersecurity Score ?

Between Oracle University company and Tietoevry company, which one has experienced more cyber incidents in the past ?

Between Oracle University company and Tietoevry company, which one has experienced more cyber incidents this year ?

Between Oracle University company and Tietoevry company, which one has experienced at least one ransomware attack ?

Between Oracle University company and Tietoevry company, which one has experienced at least one data breach ?

Between Oracle University company and Tietoevry company, which one has experienced at least one targeted cyberattack ?

Between Oracle University company and Tietoevry company, which one has experienced at least one vulnerability ?

Between Oracle University company and Tietoevry company, which one holds the most compliance certifications ?

Between Oracle University company and Tietoevry company, which one holds the fewest compliance certifications ?

Between Oracle University company and Tietoevry company, which one has the most subsidiaries ?

Between Oracle University company and Tietoevry company, which one has the largest number of employees ?

Between Oracle University and Tietoevry, which company holds both SOC 2 Type 1 certifications ?

Between Oracle University and Tietoevry, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — Oracle University or Tietoevry ?

Which company is PCI DSS compliant — Oracle University or Tietoevry ?

Between Oracle University and Tietoevry, which company complies with HIPAA regulations for healthcare data ?

Between Oracle University and Tietoevry, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2025-68480

Risk Information

CVE-2025-68476

Risk Information

CVE-2025-68475

Risk Information

CVE-2025-67436

Risk Information

CVE-2025-65857

Risk Information