PCL
Company Details
Linkedin ID:
provo-city-library
Website:
Employees number:
76
Number of followers:
281
NAICS:
51912
Industry Type:
Homepage:
provolibrary.org
IP Addresses:
0
Company ID:
PRO_4493701
Scan Status:
In-progress
Provo City Library Company CyberSecurity Posture
provolibrary.org
The Provo City Library is a public library serving residents of Provo in the state of Utah. It occupies the building of the former Brigham Young Academy, which was built in 1892. In 1976, the building was added to the National Register of Historic Places. After a remodeling process, it was rededicated as the Provo City Library on September 8, 2001.
Provo City Library A.I CyberSecurity Scoring
PCL Risk Score (AI oriented)Between 750 and 799
PCL
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
PCL Global Score (TPRM)XXXX
PCL
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
PCL Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
PCL Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for PCL
Incidents vs Libraries Industry Average (This Year)
No incidents recorded for Provo City Library in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Provo City Library in 2025.
Incident Types PCL vs Libraries Industry Avg (This Year)
No incidents recorded for Provo City Library in 2025.
Incident History — PCL (X = Date, Y = Severity)
PCL cyber incidents detection timeline including parent company and subsidiaries
PCL Company Subsidiaries
The Provo City Library is a public library serving residents of Provo in the state of Utah. It occupies the building of the former Brigham Young Academy, which was built in 1892. In 1976, the building was added to the National Register of Historic Places. After a remodeling process, it was rededicated as the Provo City Library on September 8, 2001.
Loading...
PCL Similar Companies
Howe Library
The Howe Library was established as Hanover, New Hampshire’s public library in 1900 through a gift from Emily Howe to the newly-formed non-profit Howe Library Corporation. Miss Howe dedicated the first Howe Library in her former family home on West Wheelock Street with “a prayer that this library m
Open Fifth
Open Fifth Limited (formerly PTFS Europe Limited) is a UK-based company with the vision to make technology easy for libraries. We focus on enabling library users through high-quality, open source software solutions. Our way of working is characterised by listening, finding solutions, reliable deli
The Linen Hall
Founded in 1788, we are the oldest library in Belfast and the last subscribing library in Ireland. The Linen Hall Library is renowned for its unparalleled Irish and Local Studies Collection, ranging from comprehensive holdings of Early Belfast and Ulster printed books to the 250,000 items in the Nor
LibraryWorld, Inc.
Each library subscription is free for up to 30 days. After which time, you can purchase a standard subscription for $425 per year. With a full suite of library automation modules, you can manage one or more libraries using any standard Web browser. Whether it's full patron access, serials trac
Central New York Library Resources Council
The Central New York Library Resources Council, familiarly known as CLRC, was formed in 1967 as one of nine Reference and Research Library Resources councils ("3Rs") in New York State. CLRC serves libraries and library systems in four Central New York counties: Herkimer, Madison, Oneida, and Ononda
The Library Corporation
Tell us your #librarianproblems; we have #TLCsolutions. The Library Corporation (TLC) is a woman-owned, library technology company with industry-leading support & data services. We provide enterprise solutions to public libraries, school libraries & media centers, academic libraries, and special li
.png)
PCL CyberSecurity News
August 13, 2025 07:00 AM
Provo to host first annual ‘Battle of the Badges’ blood drive
First responders in Provo are gearing up for the city's first annual "Battle of the Badges" blood drive.
June 11, 2025 07:00 AM
Salt Lake police prepare for mass demonstrations this weekend
SALT LAKE CITY — Multiple demonstrations are planned for the next few days across Utah. Saturday in particular is being called a nationwide...
August 13, 2024 07:00 AM
Provo City Council votes to raise taxes to boost library funding
The Provo City Council voted Tuesday to raise taxes to cover a budget shortfall of hundreds of thousands of dollars at the city's library.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
PCL CyberSecurity History Information
Official Website of Provo City Library
The official website of Provo City Library is http://www.provolibrary.org.
Provo City Library’s AI-Generated Cybersecurity Score
According to Rankiteo, Provo City Library’s AI-generated cybersecurity score is 756, reflecting their Fair security posture.
How many security badges does Provo City Library’ have ?
According to Rankiteo, Provo City Library currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Provo City Library have SOC 2 Type 1 certification ?
According to Rankiteo, Provo City Library is not certified under SOC 2 Type 1.
Does Provo City Library have SOC 2 Type 2 certification ?
According to Rankiteo, Provo City Library does not hold a SOC 2 Type 2 certification.
Does Provo City Library comply with GDPR ?
According to Rankiteo, Provo City Library is not listed as GDPR compliant.
Does Provo City Library have PCI DSS certification ?
According to Rankiteo, Provo City Library does not currently maintain PCI DSS compliance.
Does Provo City Library comply with HIPAA ?
According to Rankiteo, Provo City Library is not compliant with HIPAA regulations.
Does Provo City Library have ISO 27001 certification ?
According to Rankiteo,Provo City Library is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Provo City Library
Provo City Library operates primarily in the Libraries industry.
Number of Employees at Provo City Library
Provo City Library employs approximately 76 people worldwide.
Subsidiaries Owned by Provo City Library
Provo City Library presently has no subsidiaries across any sectors.
Provo City Library’s LinkedIn Followers
Provo City Library’s official LinkedIn profile has approximately 281 followers.
NAICS Classification of Provo City Library
Provo City Library is classified under the NAICS code 51912, which corresponds to Libraries and Archives.
Provo City Library’s Presence on Crunchbase
No, Provo City Library does not have a profile on Crunchbase.
Provo City Library’s Presence on LinkedIn
Yes, Provo City Library maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/provo-city-library.
Cybersecurity Incidents Involving Provo City Library
As of November 27, 2025, Rankiteo reports that Provo City Library has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
Provo City Library has an estimated 1,268 peer or competitor companies worldwide.
Provo City Library CyberSecurity History Information
How many cyber incidents has Provo City Library faced ?
Total Incidents: According to Rankiteo, Provo City Library has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at Provo City Library ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/angular/angular/commit/0276479e7d0e280e0f8d26fa567d3b7aa97a516f
- https://github.com/angular/angular/commit/05fe6686a97fa0bcd3cf157805b3612033f975bc
- https://github.com/angular/angular/commit/3240d856d942727372a705252f7c8c115394a41e
- https://github.com/angular/angular/releases/tag/19.2.16
- https://github.com/angular/angular/releases/tag/20.3.14
- https://github.com/angular/angular/releases/tag/21.0.1
- https://github.com/angular/angular/security/advisories/GHSA-58c5-g7wp-6w37
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=provo-city-library' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
