Comparison Overview

Rochester Regional Health

VS

Siemens Healthineers

Rochester Regional Health

100 S Kings Hwy, Rochester, New York, US, 14617
Last Update: 2025-12-09
View Profile
Between 750 and 799
http://www.rochesterregional.org

Rochester Regional Health, headquartered in Rochester, NY, is an integrated health services organization serving the people of Western New York, the Finger Lakes, St. Lawrence County, and beyond. We are dedicated to helping our community stay healthy and live fulfilling lives. Together, we find the best way forward to where you want to be. From western to northern New York, rest assured; we’ve got you covered. We see you. We’re with you. We’re here to uplift you—to treat people, not symptoms. To treat you well. Our experience is nation-leading, neighbor-driven, and rooted in generations of real-life care. Today, we offer comprehensive care from 500+ locations, including 8 hospitals; more than 300 primary and specialty practices, rehabilitation centers and ambulatory campuses; innovative senior services, facilities and independent housing; a wide range of behavioral health services; and ACM Global Laboratories, a global leader in patient and clinical trials. Whatever you need, from every age, to every stage, across every service line, and every symptom... Whatever it is, we’re here for it. Learn more about Rochester Regional Health at careers.rochesterregional.org. Rochester Regional Health is an Equal Opportunity/Affirmative Action Employer. Minority/Female/Disability/Veteran

NAICS: 62
NAICS Definition: Health Care and Social Assistance
Employees: 10,946
Subsidiaries: 5
12-month incidents
0
Known data breaches
0
Attack type number
1
View Profile

Siemens Healthineers

Siemensstr. 3, Forchheim, DE, 91301
Last Update: 2025-12-09
Between 800 and 849
http://siemens-healthineers.com

Siemens Healthineers is a leading medtech company with over 125 years of experience. We pioneer breakthroughs in healthcare. For everyone. Everywhere. Sustainably. Our portfolio, spanning in vitro and in vivo diagnostics to image-guided therapy and cancer care, is crucial for clinical decision-making and treatment pathways. With our strengths in patient twinning, precision therapy, as well as digital, data, and artificial intelligence (AI), we are well positioned to take on the greatest challenges in healthcare. We will continue to build on these strengths to help overcome the world’s most threatening diseases, enable efficient operations, and expand access to care. We are a team of more than 71,000 Healthineers in over 70 countries passionately pushing the boundaries of what is possible in healthcare to help improve the lives of people around the world.

NAICS: 62
NAICS Definition: Health Care and Social Assistance
Employees: 43,771
Subsidiaries: 13
12-month incidents
0
Known data breaches
0
Attack type number
1

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/rochesterregionalhealth.jpeg
Rochester Regional Health
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/siemens-healthineers.jpeg
Siemens Healthineers
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Rochester Regional Health
100%
Compliance Rate
0/4 Standards Verified
Siemens Healthineers
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Hospitals and Health Care Industry Average (This Year)

No incidents recorded for Rochester Regional Health in 2025.

Incidents vs Hospitals and Health Care Industry Average (This Year)

No incidents recorded for Siemens Healthineers in 2025.

Incident History — Rochester Regional Health (X = Date, Y = Severity)

Rochester Regional Health cyber incidents detection timeline including parent company and subsidiaries

Incident History — Siemens Healthineers (X = Date, Y = Severity)

Siemens Healthineers cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/rochesterregionalhealth.jpeg
Rochester Regional Health
Incidents

Date Detected: 10/2020
Type:Ransomware
Blog: Blog
https://images.rankiteo.com/companyimages/siemens-healthineers.jpeg
Siemens Healthineers
Incidents

Date Detected: 6/2024
Type:Vulnerability
Attack Vector: Unlocked bootloader
Blog: Blog

FAQ

Siemens Healthineers company demonstrates a stronger AI Cybersecurity Score compared to Rochester Regional Health company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Rochester Regional Health and Siemens Healthineers have experienced a similar number of publicly disclosed cyber incidents.

In the current year, Siemens Healthineers company and Rochester Regional Health company have not reported any cyber incidents.

Rochester Regional Health company has confirmed experiencing a ransomware attack, while Siemens Healthineers company has not reported such incidents publicly.

Neither Siemens Healthineers company nor Rochester Regional Health company has reported experiencing a data breach publicly.

Neither Siemens Healthineers company nor Rochester Regional Health company has reported experiencing targeted cyberattacks publicly.

Siemens Healthineers company has disclosed at least one vulnerability, while Rochester Regional Health company has not reported such incidents publicly.

Neither Rochester Regional Health nor Siemens Healthineers holds any compliance certifications.

Neither company holds any compliance certifications.

Siemens Healthineers company has more subsidiaries worldwide compared to Rochester Regional Health company.

Siemens Healthineers company employs more people globally than Rochester Regional Health company, reflecting its scale as a Hospitals and Health Care.

Neither Rochester Regional Health nor Siemens Healthineers holds SOC 2 Type 1 certification.

Neither Rochester Regional Health nor Siemens Healthineers holds SOC 2 Type 2 certification.

Neither Rochester Regional Health nor Siemens Healthineers holds ISO 27001 certification.

Neither Rochester Regional Health nor Siemens Healthineers holds PCI DSS certification.

Neither Rochester Regional Health nor Siemens Healthineers holds HIPAA certification.

Neither Rochester Regional Health nor Siemens Healthineers holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

A weakness has been identified in itsourcecode Online Pet Shop Management System 1.0. This vulnerability affects unknown code of the file /pet1/addcnp.php. This manipulation of the argument cnpname causes sql injection. The attack can be initiated remotely. The exploit has been made available to the public and could be exploited.

Published
Date
2025-12-13
Updated
Date
2025-12-13
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A security flaw has been discovered in Tenda AX9 22.03.01.46. This affects the function image_check of the component httpd. The manipulation results in use of weak hash. It is possible to launch the attack remotely. A high complexity level is associated with this attack. It is indicated that the exploitability is difficult. The exploit has been released to the public and may be exploited.

Published
Date
2025-12-13
Updated
Date
2025-12-13
Risk Information
cvss2
Base: 2.6
Severity: HIGH
AV:N/AC:H/Au:N/C:N/I:P/A:N
cvss3
Base: 3.7
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
cvss4
Base: 6.3
Severity: HIGH
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A weakness has been identified in code-projects Student File Management System 1.0. This issue affects some unknown processing of the file /admin/update_student.php. This manipulation of the argument stud_id causes sql injection. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be exploited.

Published
Date
2025-12-13
Updated
Date
2025-12-13
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A security flaw has been discovered in code-projects Student File Management System 1.0. This vulnerability affects unknown code of the file /admin/save_user.php. The manipulation of the argument firstname results in sql injection. The attack can be executed remotely. The exploit has been released to the public and may be exploited.

Published
Date
2025-12-13
Updated
Date
2025-12-13
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was identified in code-projects Student File Management System 1.0. This affects an unknown part of the file /admin/update_user.php. The manipulation of the argument user_id leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.

Published
Date
2025-12-13
Updated
Date
2025-12-13
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References