What is the official website of Porsche Ukraine LLC ?

The official website of Porsche Ukraine LLC is https://www.porscheukraine.com.ua.

What is Porsche Ukraine LLC's cybersecurity risk score?

Porsche Ukraine LLC has an AI-generated cybersecurity risk score of 746 out of 1000, indicating a Moderate security posture according to Rankiteo's assessment.

How many security incidents has Porsche Ukraine LLC experienced?

According to Rankiteo, Porsche Ukraine LLC currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Porsche Ukraine LLC been affected by any supply chain cyber incidents ?

According to Rankiteo, Porsche Ukraine LLC has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Porsche Ukraine LLC have SOC 2 Type 1 certification ?

According to Rankiteo, Porsche Ukraine LLC is not certified under SOC 2 Type 1.

Does Porsche Ukraine LLC have SOC 2 Type 2 certification ?

According to Rankiteo, Porsche Ukraine LLC does not hold a SOC 2 Type 2 certification.

Does Porsche Ukraine LLC comply with GDPR ?

According to Rankiteo, Porsche Ukraine LLC is not listed as GDPR compliant.

Does Porsche Ukraine LLC have PCI DSS certification ?

According to Rankiteo, Porsche Ukraine LLC does not currently maintain PCI DSS compliance.

Does Porsche Ukraine LLC comply with HIPAA ?

According to Rankiteo, Porsche Ukraine LLC is not compliant with HIPAA regulations.

Does Porsche Ukraine LLC have ISO 27001 certification ?

According to Rankiteo,Porsche Ukraine LLC is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Porsche Ukraine LLC operate in ?

Porsche Ukraine LLC operates primarily in the Motor Vehicle Manufacturing industry.

How many employees does Porsche Ukraine LLC have ?

Porsche Ukraine LLC employs approximately 76 people worldwide.

Does Porsche Ukraine LLC own any subsidiaries ?

Porsche Ukraine LLC presently has no subsidiaries across any sectors.

How many LinkedIn followers does Porsche Ukraine LLC have ?

Porsche Ukraine LLC's official LinkedIn profile has approximately 1,285 followers.

What is the NAICS classification code for Porsche Ukraine LLC ?

Porsche Ukraine LLC is classified under the NAICS code 3361, which corresponds to Motor Vehicle Manufacturing.

Does Porsche Ukraine LLC have a Crunchbase profile ?

No, Porsche Ukraine LLC does not have a profile on Crunchbase.

Does Porsche Ukraine LLC have a LinkedIn profile ?

Yes, Porsche Ukraine LLC maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/porsche-ukraine-llc.

How many cybersecurity incidents has Porsche Ukraine LLC experienced ?

As of June 6, 2026, Rankiteo reports that Porsche Ukraine LLC has not experienced any cybersecurity incidents.

How many peer or competitor companies does Porsche Ukraine LLC have ?

Porsche Ukraine LLC has an estimated 12,961 peer or competitor companies worldwide.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

PUL

Boost Score +25 with badge (5 left)

746

/1000

Moderate

771

/1000

Fair

Porsche Ukraine LLC Vendor Cyber Rating & Cyber Score

porscheukraine.com.ua

Add Your Compliance Badge

ТОВ «Порше Україна», дочірнє підприємство Porsche Holding Salzburg, є імпортером брендів Volkswagen, Volkswagen комерційні автомобілі, Audi, SEAT та CUPRA. Компанія імпортує автомобілі та запасні частини в Україну, реалізує продукцію брендів концерну та надає гарантійні та сервісні послуги через авторизовану дилерську мережу згідно із міжнародними стандартами концерну Volkswagen. Завдяки багаторічному досвіду Porsche Holding в автомобільній індустрії та маючи у своєму портфелі різноманітні продукти, які охоплюють майже всі сегменти автомобільної галузі, компанія «Порше Україна» має змогу задовольнити потреби всіх найпримхливіших клієнтів.

PUL A.I CyberSecurity Scoring

Scoring History

PUL

Porsche Ukraine LLC CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

No data available

Loading…

A.I.

PUL Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for PUL

Incidents vs Motor Vehicle Manufacturing Industry Avg (This Year)

No incidents recorded for Porsche Ukraine LLC in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Porsche Ukraine LLC in 2026.

Incident Types PUL vs Motor Vehicle Manufacturing Industry Avg (This Year)

No incidents recorded for Porsche Ukraine LLC in 2026.

Incident History - PUL (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Porsche Ukraine LLC Subsidiaries

PUL

Motor Vehicle Manufacturing

Website: https://www.porscheukraine.com.ua

Company Size: 201-500 employees

106

Porsche HoldingWholesale

SIVAWholesale Motor Vehicles and Parts

Bentley LisboaMotor Vehicle Manufacturing

Škoda PortugalMotor Vehicle Manufacturing

Audi PortugalMotor Vehicle Manufacturing

Lamborghini LisboaMotor Vehicle Manufacturing

Volkswagen PortugalMotor Vehicle Manufacturing

Volkswagen Veículos ComerciaisMotor Vehicle Manufacturing

Volkswagen Group Retail FranceMotor Vehicle Manufacturing

VGRF Business SolutionsRetail Motor Vehicles

Porsche ColombiaMotor Vehicle Manufacturing

Audi ColombiaFabricación de vehículos de motor

Amarok ColombiaTruck Transportation

Skoda ColombiaTruck Transportation

VW Transporter ColombiaTruck Transportation

Porsche ChileMotor Vehicle Manufacturing

Volkswagen Group SingaporeMotor Vehicle Manufacturing

Gruppo Eurocar ItaliaAutomotive

Porsche Inter Auto RomaniaMotor Vehicle Manufacturing

VGRDMotor Vehicle Manufacturing

Volkswagen Automobile Berlin GmbHMotor Vehicle Manufacturing

Audi Frankfurt GmbHMotor Vehicle Manufacturing

Schwaba GmbHMotor Vehicle Manufacturing

MAHAG GruppeMotor Vehicle Manufacturing

Volkswagen Automobile Leipzig GmbHMotor Vehicle Manufacturing

Volkswagen Automobile Stuttgart GmbHAutomotive

Volkswagen Automobile HamburgAutomotive

Audi Leipzig GmbHMotor Vehicle Manufacturing

Audi HamburgMotor Vehicle Manufacturing

Audi Berlin GmbHMotor Vehicle Manufacturing

Audi Stuttgart GmbHMotor Vehicle Manufacturing

Volkswagen Automobile Frankfurt GmbHMotor Vehicle Manufacturing

Audi Hannover GmbHMotor Vehicle Manufacturing

Auto & Service PIA GmbHMotor Vehicle Manufacturing

Volkswagen Automobile Chemnitz GmbHMotor Vehicle Manufacturing

Volkswagen Automobile Rhein-Neckar GmbHMotor Vehicle Manufacturing

Porsche RomaniaAutomotive

Porsche Inter Auto PolskaAutomotive

Centrum Flotowe Porsche Inter AutoTransportation, Logistics, Supply Chain and Storage

BONALDI MOTORI SPA Concessionaria Auto e Veicoli CommercialiMotor Vehicle Manufacturing

Centro Porsche BergamoFabbricazione di autoveicoli

Bonaldi BusinessFinancial Services

SOAUTO VGRPMotor Vehicle Manufacturing

USADOS VolkswagenMotor Vehicle Manufacturing

Volkswagen Passenger Cars Malaysia (VPCM)Motor Vehicle Manufacturing

Volkswagen Group Retail SpainMotor Vehicle Manufacturing

Sevilla WagenMotor Vehicle Manufacturing

Porsche MacedoniaMotor Vehicle Manufacturing

MOON POWERUtilities

Vicentini S.p.A. | Gruppo Eurocar ItaliaAutomotive

Porsche Volkswagen Servicios Financieros Chile SpAFinancial Services

Porsche Croatia d.o.o.Motor Vehicle Manufacturing

RINALDI S.P.A.Retail

Porsche HungariaMotor Vehicle Manufacturing

Porsche AlbaniaAutomotive

Saottini AutoMotor Vehicle Manufacturing

Audi ÖsterreichMotor Vehicle Manufacturing

Porsche Inter Auto - Österreichs größte AutohandelsgruppeMotor Vehicle Manufacturing

Erre Esse S.p.A.Motor Vehicle Manufacturing

Porsche Automotive Investment GmbH, China BranchesMotor Vehicle Manufacturing

Porsche Inter Auto S - SerbiaMotor Vehicle Manufacturing

Porsche Center BelgradeRetail Motor Vehicles

Porsche SeverMotor Vehicle Manufacturing

Porsche AdaMotor Vehicle Manufacturing

Porsche Novi SadMotor Vehicle Manufacturing

Porsche Media & CreativeAdvertising Services

Porsche Finance Group RomaniaFinancial Services

Porsche Zentrum Oberer ZürichseeMotor Vehicle Manufacturing

Porsche SlovenijaMotor Vehicle Manufacturing

Porsche Inter Auto CZMotor Vehicle Manufacturing

Porsche SCG dooWholesale Motor Vehicles and Parts

Audi SrbijaWholesale Motor Vehicles and Parts

Volkswagen SrbijaWholesale Motor Vehicles and Parts

MOON POWER SrbijaElectric Power Transmission, Control, and Distribution

Porsche Inter Auto d.o.o.Motor Vehicle Manufacturing

Škoda ÖsterreichMotor Vehicle Manufacturing

Porsche SlovakiaMotor Vehicle Manufacturing

Porsche Bank GroupFinancial Services

Eurocar FirenzeRetail

DorigoniMotor Vehicle Manufacturing

Porsche Finance Group SloveniaFinancial Services

Porsche Inter Auto Slovakia, spol. s r.o.Motor Vehicle Manufacturing

Porsche Inter Auto BG EOODMotor Vehicle Manufacturing

SEAT Center ArrábidaMotor Vehicle Manufacturing

Porsche Inter Auto SloveniaMotor Vehicle Manufacturing

Porsche Finance Group UkraineFinancial Services

Porsche BHWholesale

Eurocar Friuli Venezia GiuliaAutomotive

Porsche Leasing MacedoniaFinancial Services

PAIG Japan Automobile Investment GKRetail Motor Vehicles

Autocentro BaistrocchiMotor Vehicle Manufacturing

Porsche BGWholesale

MOON POWER BulgariaUtilities

Porsche Inter Auto UkraineRetail

Porsche WienMotor Vehicle Manufacturing

Porsche Informatik FranceIT Services and IT Consulting

Porsche MovilidadFinancial Services

Volkswagen Puchong by PHS AutohausRetail Motor Vehicles

SEAT Česká republikaVýroba motorových vozidel

Porsche Inter Auto BHMotor Vehicle Manufacturing

Porsche Inter Auto HungariaRetail Motor Vehicles

Porsche Informatik GmbHIT Services and IT Consulting

DIGILAB ITALIA Srl - Filiale Italiana di PORSCHE INFORMATIK GmbHIT Services and IT Consulting

Din BilMotor Vehicle Manufacturing

Porsche Center StockholmMotor Vehicle Manufacturing

Volkswagen StockholmMotor Vehicle Manufacturing

Loading…

Porsche Ukraine LLC Similar Companies

Mahindra and Mahindra Limited [Automotive and Farm Equipment Business]

mahindracareers.com

A USD 19.4 billion multinational group based in Mumbai, India, Mahindra provides employment opportunities to over 256,000 people across 100 countries. Mahindra operates in the key industries that drive economic growth, enjoying a leadership position in tractors, utility vehicles, information technology, financial services and vacation ownership. In addition, Mahindra enjoys a strong presence in the agribusiness, aerospace, components, consulting services, defence, energy, industrial equipment, logistics, real estate, retail, steel, commercial vehicles and two wheeler industries. The Automotive and Farm Equipment Business is the largest contributor of the Mahindra Group’s revenue. With 30,000+ full time employees spread across 20 locations, Mahindra has a strong presence in India. Further it propels an entire manufacturing ecosystem of 1,200 suppliers and 3,500 dealers, thereby creating direct and indirect employment for over 200,000 individuals. Our Farm Equipment business is the number 1 tractor company in the world by volume. In addition to our focus on maintaining a leading position in the core tractor mechanization business, we strive to deliver on our aspiration of “Farm Tech Prosperity” thus enabling our customers and our communities to RISE. Our Automotive business is a full-range mobility player with a presence in almost every segment of the automobile industry. Our product portfolio ranges from world class SUVs, premium luxury UVs, sedans, pick-ups, light, medium and heavy commercial vehicles to three-wheelers. All these cater to a diverse customer base spanning across rural and semi-urban customers. Leveraging our growing dominance, domestic & international market penetration and recent strategic acquisitions, we aim to provide world class exeperience to our customers and team members.

Royal Enfield

royalenfield.com

The oldest motorcycle brand in continuous production, Royal Enfield made its first motorcycle in 1901. A division of Eicher Motors Limited, Royal Enfield has created the mid-sized motorcycle segment in India with its unique and distinctive modern classic bikes. Royal Enfield operates in 60+ countries across the world with more than 3000 retail touch points globally, 5 CKD units (Argentina, Brazil, Colombia, Nepal, & Thailand), 3 state-of-the-art manufacturing facilities based out of Chennai, India and two technical centers - in India and in the UK. Watch Royal Enfield's incredible journey here - https://youtu.be/UvR57lwJptk

American Honda Motor Company, Inc.

honda.com

We are Honda. A company built on dreams and the determination to make them come true. Driven by our commitment to society and the planet, our work brings joy to our customers and enhances mobility, as we work to help people everywhere expand their life’s potential. Our products, from cars and trucks, to advanced light jets and other forms of mobility, reflect our belief that the purpose of technology is to help people. Together, we are building an inclusive culture where people feel seen and celebrated. Where associates from a variety of backgrounds can apply their unique ideas and experiences to help us create a cleaner, safer, more exciting mobile world. You’re invited to join Honda on this journey. Your individual skills, passion, persistence, innovative mindset and challenging spirit are needed to help Honda Bring the Future. Bring the Future at honda.com/careers

Motherson Group

motherson.com

Motherson is a diversified global design, engineering, manufacturing and assembly (DEMA) specialist, delivering full-system solutions to customers across a wide range of industries. With a robust network of 425 state-of-the-art facilities across 44 countries, and a dedicated workforce of more than 200,000 professionals, Motherson is continually working toward its vision of being a globally preferred sustainable solutions provider for its stakeholders. The group recorded revenues of USD 21.2 billion in 2024-25 and is ranked among the top 15 automotive suppliers worldwide. As a trusted partner to OEM customers, Motherson offers an extensive, versatile product portfolio spanning the entire spectrum of the mobility industry. This includes passenger and commercial vehicles, two- and three-wheelers, rolling stock, off-highway vehicles, earthmoving, material-handling and agricultural machinery. Its product range encompasses electrical distribution systems, fully assembled vehicle interior and exterior modules, rear vision systems, moulded plastic parts and assemblies, injection moulding tools, rubber components, lighting systems, and machined metal products. Beyond the automotive sector, Motherson has strategically diversified into industries such as health and medical, aerospace, consumer electronics, logistics, and industrial IT solutions. This expansion reflects the group’s adaptability and unwavering commitment to meeting its customers' evolving needs. Motherson believes its employees are its partners in progress, its biggest asset. The organisation nurtures an environment where employees thrive as dynamic professionals and individuals. The organisation is responsive to its employees' professional aspirations and provides a range of growth opportunities, enabling them to advance professionally and to take on strategic roles within the organisation.

Tata Motors

cb tatamotors.com

At the forefront of shaping mobility for over eight decades, driven by a legacy of innovation and an unwavering commitment to excellence. We fuse next-generation technologies with operational precision and continuous value creation — across every vehicle and process. But what truly sets us apart is our purpose: transforming lives, empowering communities, and building next-gen mobility solutions. Smart tech. Safer mobility. Greener journeys — creating a cleaner, more connected world and shaping a better future.

Hyundai Motor Company

hyundai.com

Our mission is clear: to become a lifelong mobility partner for our customers and communities by creating meaningful progress through clean energy, connected technology, and human-centered innovation. Hyundai Motor Company is a global mobility leader committed to shaping a better future. With more than 120,000 employees across 200+ countries, we are redefining the way the world moves, not just through innovation in automotive design, but through bold investments in smart mobility, sustainability, and technology. Each year, we bring over 4.6 million vehicles to drivers around the globe – from award-winning sedans to cutting-edge electric and hydrogen-powered solutions.

Rivian

cb rivian.com

Doing something different is never easy. It requires courage, optimism and grit. Core to our mission is building a team of adventurous individuals determined to make a positive impact on the world. This means challenging ourselves constantly. Stretching beyond the bounds of conventional thinking. Reframing old problems. Seeking new solutions. And operating comfortably in a space of uncertainty. While our backgrounds are diverse, our team shares a love of the outdoors and a desire to protect it for future generations. Do you like doing the impossible? We’d love to hear from you.

Stellantis

cb stellantis.com

Our storied and iconic brands embody the passion of their visionary founders and today’s customers in their innovative products and services: they include Abarth, Alfa Romeo, Chrysler, Citroën, Dodge, DS Automobiles, Fiat, Jeep®, Lancia, Maserati, Opel, Peugeot, Ram, Vauxhall and mobility brands Free2move and Leasys. Powered by our diversity, we lead the way the world moves – aspiring to become the greatest sustainable mobility tech company, not the biggest, while creating added value for all stakeholders as well as the communities in which we operate.

Mercedes-Benz Careers International

daimler.com

Daimler AG is one of the biggest producers of premium cars and the world’s largest manufacturer of commercial vehicles with a global reach. The Daimler Group has divisions including Mercedes-Benz Cars, Daimler Trucks, Mercedes-Benz Vans, Daimler Buses and Daimler Financial Services. As a pioneer of automotive engineering, we continue to shape the future of mobility today: Our focus is on innovative and green technologies as well as on safe and superior automobiles that appeal to and fascinate our customers. Today, we are one of the world’s most successful automotive companies. Further information and career opportunities can be found on: http://www.daimler.com/career/job-search/locations/

Loading…

NEWS

Porsche Ukraine LLC CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

September 09, 2021 07:00 AM

How a Russian Mobile App Developer Recruited Phones into a Secret Ad-Watching Robot Army

A Russian mobile app publishing network appears to have infected millions of phones with malware that converts games into quiet money-making machines.

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-7654

SUMMARY

The Admin Columns plugin for WordPress is vulnerable to PHP Object Injection leading to Remote Code Execution in versions up to and including 7.0.18. This is due to the use of `unserialize()` without an `allowed_classes` restriction in the `IdsToCollection::get_ids_from_string()` function, which processes attacker-controlled post meta values without proper validation. This makes it possible for authenticated attackers with Contributor-level access and above to inject a serialized PHP object into a post's custom meta field and trigger arbitrary code execution by exploiting a bundled POP gadget chain, resulting in remote code execution as the web server user.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: 8.8)

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

2.8

REFERENCES

CVE-2026-7523

SUMMARY

The Alba Board plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.1.3. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for authenticated attackers, with subscriber-level access and above, to access arbitrary private alba_card post data, including title, description, assignee, due date, tags, and comments, that is intended to be restricted to Administrators and Editors. The handler is registered via the wp_ajax_nopriv_ hook and its nonce is exposed to all site visitors through wp_localize_script on pages containing the [alba_board] shortcode, making this exploitable by unauthenticated users who can access any such page.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: 4.3)

cvss3

Base Score: 4.3

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Impact Score

1.4

Exploitability

2.8

REFERENCES

CVE-2026-45409

SUMMARY

Internationalized Domain Names in Applications (IDNA) for Python provides support for Internationalized Domain Names in Applications (IDNA) and Unicode IDNA Compatibility Processing. In versions prior to 3.15, payloads such as `"\u0660" * N` or `"\u30fb" * N + "\u6f22"` utilize the `valid_contexto` function prior to length rejection, and for high values of `N` will take a long time to process. This is the same issue as CVE-2024-3651, however the original remediation in 2024 was not a complete fix. A specially crafted argument to the `idna.encode()` function could consume significant resources. This may lead to a denial-of-service. Starting in version 3.14, the function rejects long inputs as soon as practicable prior to any further processing to minimize resource consumption. In version 3.15, this approach was extended to lesser used alternate functions (i.e. per-label conversions and codec support). A workaround is available. Domain names cannot exceed 253 characters in length. If this length limit is enforced prior to passing the domain to the `idna.encode()` function, it should no longer consume significant resources. This is triggered by arbitrarily large inputs that would not occur in normal usage, but may be passed to the library assuming there is no preliminary input validation by the higher-level application.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 6.9

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://github.com/kjd/idna/security/advisories/GHSA-65pc-fj4g-8rjx

CVE-2026-11431

SUMMARY

A path traversal vulnerability exists in the Projects Service download endpoint shared by Altium Enterprise Server and Altium 365. An authenticated user can supply a crafted path parameter that bypasses validation, allowing arbitrary files (including entire directories returned as archives) to be read from the server filesystem. Because the readable files include service configuration and credential material, exploitation can be used to gather information enabling further compromise. The issue can be combined with CVE-2026-11424 to reach the cloud-side endpoint. On multi-tenant Altium 365 deployments, the readable configuration could have exposed credentials shared across services. Altium Enterprise Server is fixed in 8.1.1; the issue has been remediated in Altium 365 at the service level.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 8.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://www.altium.com/platform/security-compliance/security-advisories

CVE-2026-11429

SUMMARY

A path traversal vulnerability exists in the Git Service component shared by Altium Enterprise Server and Altium 365. The service accepts a sequence of post-clone file-manipulation operations that use user-supplied paths without validation, allowing an authenticated user with basic git access to move arbitrary files outside the intended repository area. This file-move primitive can be used to place attacker-controlled script content into directories where it is later executed by the service, resulting in remote code execution under the Git Service account. On multi-tenant Altium 365 deployments, this could have allowed access to data belonging to other tenants on the same infrastructure node. Altium Enterprise Server is fixed in 8.1.1; the issue has been remediated in Altium 365 at the service level.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 9.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://www.altium.com/platform/security-compliance/security-advisories

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…