RBI
Company Details
Linkedin ID:
restaurant-brands-international
Website:
Employees number:
8,688
Number of followers:
193,624
NAICS:
722
Industry Type:
Homepage:
rbi.com
IP Addresses:
0
Company ID:
RES_2754323
Scan Status:
In-progress
Restaurant Brands International Company CyberSecurity Posture
rbi.com
Restaurant Brands International Inc. is one of the world's largest quick service restaurant companies with nearly $45 billion in annual system-wide sales and over 32,000 restaurants in more than 120 countries and territories. RBI owns four of the world's most prominent and iconic quick service restaurant brands – TIM HORTONS®, BURGER KING®, POPEYES®, and FIREHOUSE SUBS®. These independently operated brands have been serving their respective guests, franchisees and communities for decades. Through its Restaurant Brands for Good framework, RBI is improving sustainable outcomes related to its food, the planet, and people and communities.
Restaurant Brands International A.I CyberSecurity Scoring
RBI Risk Score (AI oriented)Between 750 and 799
RBI
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
RBI Global Score (TPRM)XXXX
RBI
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
RBI Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Restaurant Brands International (RBI)
Breach
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: Ethical hackers **BobDaHacker** and **BobTheShoplifter** exposed severe security vulnerabilities within **Restaurant Brands International (RBI)**, the parent company of Burger King, Tim Hortons, and Popeyes. The flaws included **hard-coded passwords** (e.g., 'admin') in HTML and drive-through systems, **plain-text passwords sent via email**, and an **unrestricted API** allowing unauthorized admin access. The hackers gained entry to **employee accounts, internal configurations, raw audio recordings of drive-through conversations** (containing customer personal data processed by AI), and even **restaurant bathroom rating systems**. The breaches revealed **catastrophic oversight** in cybersecurity fundamentals, with no basic safeguards like antivirus checks or system audits. While the ethical hackers responsibly disclosed the issues and confirmed **no customer data was retained**, the exposure demonstrated how easily malicious actors could have exploited these gaps. RBI reportedly fixed the vulnerabilities post-disclosure but did not publicly acknowledge the researchers, raising concerns about long-term security improvements. The incident underscores systemic negligence in protecting **30,000+ global outlets** from potential data leaks, financial fraud, or operational disruptions.
RBI Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for RBI
Incidents vs Food and Beverage Services Industry Average (This Year)
Restaurant Brands International has 138.1% more incidents than the average of same-industry companies with at least one recorded incident.
Incidents vs All-Companies Average (This Year)
Restaurant Brands International has 56.25% more incidents than the average of all companies with at least one recorded incident.
Incident Types RBI vs Food and Beverage Services Industry Avg (This Year)
Restaurant Brands International reported 1 incidents this year: 0 cyber attacks, 0 ransomware, 0 vulnerabilities, 1 data breaches, compared to industry peers with at least 1 incident.
Incident History — RBI (X = Date, Y = Severity)
RBI cyber incidents detection timeline including parent company and subsidiaries
RBI Company Subsidiaries
Restaurant Brands International Inc. is one of the world's largest quick service restaurant companies with nearly $45 billion in annual system-wide sales and over 32,000 restaurants in more than 120 countries and territories. RBI owns four of the world's most prominent and iconic quick service restaurant brands – TIM HORTONS®, BURGER KING®, POPEYES®, and FIREHOUSE SUBS®. These independently operated brands have been serving their respective guests, franchisees and communities for decades. Through its Restaurant Brands for Good framework, RBI is improving sustainable outcomes related to its food, the planet, and people and communities.
Loading...
RBI Similar Companies
Red Bull
Red Bull Gives Wiiings to People and Ideas. This has driven us – and all we do – since 1987. Today, Red Bull operates in over 170 countries, selling more than 12 billion cans annually and growing! Above all, our people remain the essential ingredient in bringing the Red Bull brand to life. Check out
Arca Continental
Arca Continental produces, distributes and sells non-alcoholic beverages under The Coca-Cola Company brand, as well as snacks under the brands of Bokados in Mexico, Inalecsa in Ecuador and Wise in the US. With an outstanding history spanning more than 98 years, Arca Continental is the second-larges
Nestlé
As the world’s largest food and beverage company we are driven by a simple aim: unlocking the power of food to enhance quality of life for everyone, today and for generations to come. To deliver on this, we serve with passion, with a spirit of excellence, offering products and services for all stage
Perfetti Van Melle
Perfetti Van Melle is a privately owned company, producing and distributing candies and chewing gums in more than 150 countries worldwide. Employing over 17.000 people and operating 37 companies throughout the world, Perfetti Van Melle has a true global reach: it is present in the Asia Pacific Reg
As China’s leading dairy manufacturer, Mengniu focuses on producing nutritional, healthy and tasty dairy products for customers worldwide. 20 years of experiences enabled Mengniu to develop a diversified product matrix, including liquid milk, ice-cream, infant formula, cheese and etc. The company ha
VARUN BEVERAGES LIMITED
Varun Beverages Limited (VBL) is one of the top FMCG players in the Indian Market. We are on track towards strengthening our position in the global beverage industry with our presence in 14 countries in the Indian sub-continent and Africa - where we are responsible for producing popular brands like
Coca-Cola Consolidated
Coca-Cola Consolidated is the largest Coca-Cola bottler in the United States. Our Purpose is to honor God in all we do, serve others, pursue excellence, and grow profitably. For over 120 years, we have been deeply committed to the consumers, customers, and communities we serve and are passionate abo
Nestlé Nespresso SA
Coffee is at the heart of everything we do, and consumer satisfaction is why we do it. Our story started with one simple idea: everyone should be able to make the perfect cup of coffee at home. Something we still believe today, which is why we think delivering the highest quality coffee, sip after
Compass Group USA
Compass Group is redefining the food and facility services landscape with innovation and passion through the lens of what’s next. Serving premier healthcare systems, respected educational institutions, world-renowned cultural centers, popular sporting and entertainment venues, and Fortune 500 organi
.png)
RBI CyberSecurity News
November 25, 2025 12:00 PM
Restaurant Brands International Inc. to Participate in the Barclays 11th Annual Eat, Sleep, Play, Shop Conference
Restaurant Brands International Inc. (NYSE: QSR) (TSX: QSR) (TSX: QSP) ("RBI") announced today that Josh Kobza, Chief Executive Officer,...
November 23, 2025 12:21 AM
How Investors May Respond To Restaurant Brands International (QSR) Expanding Burger King in China With CPE Backing
Earlier in November 2025, Restaurant Brands International announced a joint venture with Chinese asset manager CPE to grow Burger King's...
November 22, 2025 06:10 PM
A Fresh Look at Restaurant Brands International (NYSE:QSR) Valuation After Landmark China Expansion Deal
Restaurant Brands International (NYSE:QSR) is making a major move in China, teaming up with CPE to triple the number of Burger King outlets...
November 16, 2025 08:00 AM
Evaluating the Valuation of Restaurant Brands International (TSX:QSP.UN) as Shares Gain Momentum
Restaurant Brands International Limited Partnership (TSX:QSP.UN) shares have edged higher recently, climbing nearly 2% over the past month...
November 13, 2025 08:00 AM
Restaurant Brands International Inc. Announces Pricing of Secondary Offering of Common Shares
Restaurant Brands International Inc. ("RBI" or the "Company") (TSX: OSR) (NYSE: QSR) announced today that an underwritten registered public...
November 13, 2025 08:00 AM
Restaurant Brands International Inc. Announces Receipt of Exchange Notice, Intent to Use Common Shares to Satisfy Exchange and Commencement of Secondary Offering of Common Shares
Restaurant Brands International Inc. ("RBI" or the "Company") (TSX: QSR) (NYSE: QSR) announced today that Restaurant Brands International...
November 10, 2025 08:00 AM
Restaurant Brands International to form joint venture for Burger King China to accelerate expansion
Over the next decade, the joint venture aims to more than double Burger King's footprint in China.
November 10, 2025 08:00 AM
Restaurant Brands to form joint venture with CPE to expand Burger King in China
Restaurant Brands International said on Monday Chinese firm CPE will invest about $350 million in Burger King China as part of a joint...
November 07, 2025 08:00 AM
Returns On Capital Are Showing Encouraging Signs At Restaurant Brands International Limited Partnership (TSE:QSP.UN)
What are the early trends we should look for to identify a stock that could multiply in value over the long term...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
RBI CyberSecurity History Information
Official Website of Restaurant Brands International
The official website of Restaurant Brands International is http://www.rbi.com.
Restaurant Brands International’s AI-Generated Cybersecurity Score
According to Rankiteo, Restaurant Brands International’s AI-generated cybersecurity score is 762, reflecting their Fair security posture.
How many security badges does Restaurant Brands International’ have ?
According to Rankiteo, Restaurant Brands International currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Restaurant Brands International have SOC 2 Type 1 certification ?
According to Rankiteo, Restaurant Brands International is not certified under SOC 2 Type 1.
Does Restaurant Brands International have SOC 2 Type 2 certification ?
According to Rankiteo, Restaurant Brands International does not hold a SOC 2 Type 2 certification.
Does Restaurant Brands International comply with GDPR ?
According to Rankiteo, Restaurant Brands International is not listed as GDPR compliant.
Does Restaurant Brands International have PCI DSS certification ?
According to Rankiteo, Restaurant Brands International does not currently maintain PCI DSS compliance.
Does Restaurant Brands International comply with HIPAA ?
According to Rankiteo, Restaurant Brands International is not compliant with HIPAA regulations.
Does Restaurant Brands International have ISO 27001 certification ?
According to Rankiteo,Restaurant Brands International is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Restaurant Brands International
Restaurant Brands International operates primarily in the Food and Beverage Services industry.
Number of Employees at Restaurant Brands International
Restaurant Brands International employs approximately 8,688 people worldwide.
Subsidiaries Owned by Restaurant Brands International
Restaurant Brands International presently has no subsidiaries across any sectors.
Restaurant Brands International’s LinkedIn Followers
Restaurant Brands International’s official LinkedIn profile has approximately 193,624 followers.
NAICS Classification of Restaurant Brands International
Restaurant Brands International is classified under the NAICS code 722, which corresponds to Food Services and Drinking Places.
Restaurant Brands International’s Presence on Crunchbase
Yes, Restaurant Brands International has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/restaurant-brands-international.
Restaurant Brands International’s Presence on LinkedIn
Yes, Restaurant Brands International maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/restaurant-brands-international.
Cybersecurity Incidents Involving Restaurant Brands International
As of November 27, 2025, Rankiteo reports that Restaurant Brands International has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Restaurant Brands International has an estimated 8,392 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Restaurant Brands International ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach.
How does Restaurant Brands International detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an incident response plan activated with yes (after ethical hacker disclosure), and containment measures with patch applied to vulnerabilities (reportedly), and communication strategy with no public acknowledgment of ethical hackers or incident details..
Incident Details
Can you provide details on each incident ?
Title: Hard-coded passwords exposed Burger King’s fragile security infrastructure worldwide
Description: Hackers accessed employee accounts and internal configurations with shocking ease due to weak security practices at Restaurant Brands International (RBI), the parent company of Burger King, Tim Hortons, and Popeyes. Ethical hackers BobDaHacker and BobTheShoplifter discovered hard-coded passwords (e.g., 'admin'), plain-text passwords sent via email, and unsecured APIs that allowed unrestricted access. The vulnerabilities exposed internal systems, employee accounts, drive-through audio recordings (containing customer PII), and even restaurant bathroom rating screens. The hackers described RBI’s security as 'catastrophic,' highlighting systemic neglect of basic cybersecurity fundamentals. RBI reportedly fixed the issues after disclosure but did not publicly acknowledge the ethical hackers.
Type: Unauthorized Access
Attack Vector: Hard-coded CredentialsPlain-text Passwords in EmailsUnrestricted API AccessDefault/Weak Passwords (e.g., 'admin')
Vulnerability Exploited: Hard-coded passwords in HTML/APIsLack of password encryptionMissing access controlsPoor credential management
Threat Actor: BobDaHacker (Ethical Hacker)BobTheShoplifter (Ethical Hacker)
Motivation: Ethical Hacking / Responsible Disclosure
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
How does the company identify the attack vectors used in incidents ?
Identification of Attack Vectors: The company identifies the attack vectors used in incidents through Hard-coded password in HTMLDefault 'admin' password in drive-through tabletsUnrestricted API signup.
Impact of the Incidents
What was the impact of each incident ?
Incident : Unauthorized Access RES1202112091125
Data Compromised: Employee account credentials, Internal system configurations, Drive-through audio recordings (potential pii), Restaurant operational data (e.g., bathroom rating screens)
Systems Affected: Equipment ordering websiteDrive-through tablet systemsAI-powered customer/staff evaluation systemsRestaurant management APIsBathroom rating screens
Operational Impact: High (potential for unauthorized access to critical systems, customer data exposure, and operational disruption)
Brand Reputation Impact: High (public exposure of systemic security failures across global brands: Burger King, Tim Hortons, Popeyes)
Identity Theft Risk: Moderate (drive-through audio recordings may contain customer PII)
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Employee Credentials, Internal Configurations, Audio Recordings (Potential Pii), Operational Data and .
Which entities were affected by each incident ?
Incident : Unauthorized Access RES1202112091125
Entity Name: Restaurant Brands International (RBI)
Entity Type: Parent Company
Industry: Fast Food / Hospitality
Location: Global (30,000+ outlets)
Size: Large Enterprise
Incident : Unauthorized Access RES1202112091125
Entity Name: Burger King
Entity Type: Subsidiary
Industry: Fast Food
Location: Global
Incident : Unauthorized Access RES1202112091125
Entity Name: Tim Hortons
Entity Type: Subsidiary
Industry: Fast Food / Coffee
Location: Primarily Canada/US
Incident : Unauthorized Access RES1202112091125
Entity Name: Popeyes
Entity Type: Subsidiary
Industry: Fast Food
Location: Global
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Unauthorized Access RES1202112091125
Incident Response Plan Activated: Yes (after ethical hacker disclosure)
Containment Measures: Patch applied to vulnerabilities (reportedly)
Communication Strategy: No public acknowledgment of ethical hackers or incident details
What is the company's incident response plan?
Incident Response Plan: The company's incident response plan is described as Yes (after ethical hacker disclosure).
Data Breach Information
What type of data was compromised in each breach ?
Incident : Unauthorized Access RES1202112091125
Type of Data Compromised: Employee credentials, Internal configurations, Audio recordings (potential pii), Operational data
Sensitivity of Data: Moderate to High (includes PII in audio recordings and system access credentials)
Data Exfiltration: No (ethical hackers did not retain data)
Data Encryption: No (passwords stored in plain-text)
Personally Identifiable Information: Potential (in drive-through audio recordings)
How does the company handle incidents involving personally identifiable information (PII) ?
Handling of PII Incidents: The company handles incidents involving personally identifiable information (PII) through by patch applied to vulnerabilities (reportedly) and .
Lessons Learned and Recommendations
What lessons were learned from each incident ?
Incident : Unauthorized Access RES1202112091125
Lessons Learned: Systemic neglect of basic cybersecurity practices (e.g., hard-coded passwords, plain-text credentials, unrestricted APIs) can expose global enterprises to severe risks. Ethical hacking revealed critical gaps in access controls, credential management, and operational security across RBI’s brands.
What recommendations were made to prevent future incidents ?
Incident : Unauthorized Access RES1202112091125
Recommendations: Implement robust password policies and multi-factor authentication (MFA), Eliminate hard-coded credentials and enforce encryption for sensitive data, Conduct regular security audits and penetration testing, Restrict API access with proper authentication/authorization, Establish a transparent vulnerability disclosure program, Train employees on secure credential handling and phishing risks, Monitor dark web for exposed credentials or system accessImplement robust password policies and multi-factor authentication (MFA), Eliminate hard-coded credentials and enforce encryption for sensitive data, Conduct regular security audits and penetration testing, Restrict API access with proper authentication/authorization, Establish a transparent vulnerability disclosure program, Train employees on secure credential handling and phishing risks, Monitor dark web for exposed credentials or system accessImplement robust password policies and multi-factor authentication (MFA), Eliminate hard-coded credentials and enforce encryption for sensitive data, Conduct regular security audits and penetration testing, Restrict API access with proper authentication/authorization, Establish a transparent vulnerability disclosure program, Train employees on secure credential handling and phishing risks, Monitor dark web for exposed credentials or system accessImplement robust password policies and multi-factor authentication (MFA), Eliminate hard-coded credentials and enforce encryption for sensitive data, Conduct regular security audits and penetration testing, Restrict API access with proper authentication/authorization, Establish a transparent vulnerability disclosure program, Train employees on secure credential handling and phishing risks, Monitor dark web for exposed credentials or system accessImplement robust password policies and multi-factor authentication (MFA), Eliminate hard-coded credentials and enforce encryption for sensitive data, Conduct regular security audits and penetration testing, Restrict API access with proper authentication/authorization, Establish a transparent vulnerability disclosure program, Train employees on secure credential handling and phishing risks, Monitor dark web for exposed credentials or system accessImplement robust password policies and multi-factor authentication (MFA), Eliminate hard-coded credentials and enforce encryption for sensitive data, Conduct regular security audits and penetration testing, Restrict API access with proper authentication/authorization, Establish a transparent vulnerability disclosure program, Train employees on secure credential handling and phishing risks, Monitor dark web for exposed credentials or system accessImplement robust password policies and multi-factor authentication (MFA), Eliminate hard-coded credentials and enforce encryption for sensitive data, Conduct regular security audits and penetration testing, Restrict API access with proper authentication/authorization, Establish a transparent vulnerability disclosure program, Train employees on secure credential handling and phishing risks, Monitor dark web for exposed credentials or system access
What are the key lessons learned from past incidents ?
Key Lessons Learned: The key lessons learned from past incidents are Systemic neglect of basic cybersecurity practices (e.g., hard-coded passwords, plain-text credentials, unrestricted APIs) can expose global enterprises to severe risks. Ethical hacking revealed critical gaps in access controls, credential management, and operational security across RBI’s brands.
References
Where can I find more information about each incident ?
Incident : Unauthorized Access RES1202112091125
Source: Tom’s Hardware
Incident : Unauthorized Access RES1202112091125
Source: Ethical Hackers’ Blog (Archived)
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Tom’s Hardware, and Source: Ethical Hackers’ Blog (Archived).
Investigation Status
What is the current status of the investigation for each incident ?
Incident : Unauthorized Access RES1202112091125
Investigation Status: Completed (by ethical hackers; RBI applied fixes but no public report)
How does the company communicate the status of incident investigations to stakeholders ?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through No public acknowledgment of ethical hackers or incident details.
Initial Access Broker
How did the initial access broker gain entry for each incident ?
Incident : Unauthorized Access RES1202112091125
Entry Point: Hard-Coded Password In Html, Default 'Admin' Password In Drive-Through Tablets, Unrestricted Api Signup,
High Value Targets: Employee Accounts, Internal Configurations, Drive-Through Audio Systems, Restaurant Management Apis,
Data Sold on Dark Web: Employee Accounts, Internal Configurations, Drive-Through Audio Systems, Restaurant Management Apis,
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident ?
Incident : Unauthorized Access RES1202112091125
Root Causes: Lack Of Basic Cybersecurity Hygiene (E.G., Hard-Coded Passwords, Plain-Text Credentials), Absence Of Access Controls (E.G., Unrestricted Api Access), Inadequate System Audits And Vulnerability Assessments, Poor Credential Management Practices, Corporate Neglect Of Security Fundamentals Despite Global Scale,
Corrective Actions: Patches Applied To Reported Vulnerabilities (Per Rbi), No Public Confirmation Of Broader Security Overhaul Or Policy Changes,
What corrective actions has the company taken based on post-incident analysis ?
Corrective Actions Taken: The company has taken the following corrective actions based on post-incident analysis: Patches Applied To Reported Vulnerabilities (Per Rbi), No Public Confirmation Of Broader Security Overhaul Or Policy Changes, .
Additional Questions
General Information
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident was an BobDaHacker (Ethical Hacker)BobTheShoplifter (Ethical Hacker).
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were Employee account credentials, Internal system configurations, Drive-through audio recordings (potential PII), Restaurant operational data (e.g., bathroom rating screens) and .
What was the most significant system affected in an incident ?
Most Significant System Affected: The most significant system affected in an incident was Equipment ordering websiteDrive-through tablet systemsAI-powered customer/staff evaluation systemsRestaurant management APIsBathroom rating screens.
Response to the Incidents
What containment measures were taken in the most recent incident ?
Containment Measures in Most Recent Incident: The containment measures taken in the most recent incident was Patch applied to vulnerabilities (reportedly).
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Internal system configurations, Employee account credentials, Drive-through audio recordings (potential PII), Restaurant operational data (e.g. and bathroom rating screens).
Lessons Learned and Recommendations
What was the most significant lesson learned from past incidents ?
Most Significant Lesson Learned: The most significant lesson learned from past incidents was Systemic neglect of basic cybersecurity practices (e.g., hard-coded passwords, plain-text credentials, unrestricted APIs) can expose global enterprises to severe risks. Ethical hacking revealed critical gaps in access controls, credential management, and operational security across RBI’s brands.
What was the most significant recommendation implemented to improve cybersecurity ?
Most Significant Recommendation Implemented: The most significant recommendation implemented to improve cybersecurity was Restrict API access with proper authentication/authorization, Implement robust password policies and multi-factor authentication (MFA), Establish a transparent vulnerability disclosure program, Monitor dark web for exposed credentials or system access, Conduct regular security audits and penetration testing, Train employees on secure credential handling and phishing risks and Eliminate hard-coded credentials and enforce encryption for sensitive data.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident are Ethical Hackers’ Blog (Archived) and Tom’s Hardware.
Investigation Status
What is the current status of the most recent investigation ?
Current Status of Most Recent Investigation: The current status of the most recent investigation is Completed (by ethical hackers; RBI applied fixes but no public report).
Initial Access Broker
.png)
Latest Global CVEs (Not Company-Specific)
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/angular/angular/commit/0276479e7d0e280e0f8d26fa567d3b7aa97a516f
- https://github.com/angular/angular/commit/05fe6686a97fa0bcd3cf157805b3612033f975bc
- https://github.com/angular/angular/commit/3240d856d942727372a705252f7c8c115394a41e
- https://github.com/angular/angular/releases/tag/19.2.16
- https://github.com/angular/angular/releases/tag/20.3.14
- https://github.com/angular/angular/releases/tag/21.0.1
- https://github.com/angular/angular/security/advisories/GHSA-58c5-g7wp-6w37
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=restaurant-brands-international' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
