What is the official website of Sogea-Satom ?

The official website of Sogea-Satom is http://www.sogea-satom.com.

What is Sogea-Satom's cybersecurity risk score?

Sogea-Satom has an AI-generated cybersecurity risk score of 769 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has Sogea-Satom experienced?

According to Rankiteo, Sogea-Satom currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Sogea-Satom been affected by any supply chain cyber incidents ?

According to Rankiteo, Sogea-Satom has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Sogea-Satom have SOC 2 Type 1 certification ?

According to Rankiteo, Sogea-Satom is not certified under SOC 2 Type 1.

Does Sogea-Satom have SOC 2 Type 2 certification ?

According to Rankiteo, Sogea-Satom does not hold a SOC 2 Type 2 certification.

Does Sogea-Satom comply with GDPR ?

According to Rankiteo, Sogea-Satom is not listed as GDPR compliant.

Does Sogea-Satom have PCI DSS certification ?

According to Rankiteo, Sogea-Satom does not currently maintain PCI DSS compliance.

Does Sogea-Satom comply with HIPAA ?

According to Rankiteo, Sogea-Satom is not compliant with HIPAA regulations.

Does Sogea-Satom have ISO 27001 certification ?

According to Rankiteo,Sogea-Satom is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Sogea-Satom operate in ?

Sogea-Satom operates primarily in the Construction industry.

How many employees does Sogea-Satom have ?

Sogea-Satom employs approximately 4,052 people worldwide.

Does Sogea-Satom own any subsidiaries ?

Sogea-Satom presently has no subsidiaries across any sectors.

How many LinkedIn followers does Sogea-Satom have ?

Sogea-Satom's official LinkedIn profile has approximately 184,844 followers.

What is the NAICS classification code for Sogea-Satom ?

Sogea-Satom is classified under the NAICS code 23, which corresponds to Construction.

Does Sogea-Satom have a Crunchbase profile ?

No, Sogea-Satom does not have a profile on Crunchbase.

Does Sogea-Satom have a LinkedIn profile ?

Yes, Sogea-Satom maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/sogea-satom.

How many cybersecurity incidents has Sogea-Satom experienced ?

As of June 7, 2026, Rankiteo reports that Sogea-Satom has experienced 1 cybersecurity incidents.

How many peer or competitor companies does Sogea-Satom have ?

Sogea-Satom has an estimated 39,716 peer or competitor companies worldwide.

What types of cybersecurity incidents has Sogea-Satom faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Ransomware.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

Sogea-Satom

Boost Score +25 with badge (5 left)

769

/1000

Fair

794

/1000

Fair

Sogea-Satom Vendor Cyber Rating & Cyber Score

sogea-satom.com

Add Your Compliance Badge

Sogea-Satom : un partenaire local Ancrage historique dans les territoires, culture d’entreprise privilégiant la qualité et l’esprit d’équipe, Sogea-Satom, à travers son réseau de filiales implantées dans une vingtaine de pays, fait partie intégrante du tissu économique et social du continent africain. Son activité est consacrée aux travaux routiers et au terrassement, au génie civil, à l’hydraulique et au bâtiment. Sogea-Satom adapte en permanence ses ressources – moyens humains et matériels – pour répondre au plus près aux attentes de ses clients. Opérateur stable et permanent, Sogea-Satom se positionne comme chef de file des entreprises internationales du BTP en Afrique. Elle y emploie plus de 14 000 personnes sur une centaine de

Sogea-Satom A.I CyberSecurity Scoring

Scoring History

Sogea-Satom

Sogea-Satom CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

Sogea-Satom

Ransomware

100

9/2023

VIN096210910302...

Loading…

A.I.

Sogea-Satom Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for Sogea-Satom

Incidents vs Construction Industry Avg (This Year)

No incidents recorded for Sogea-Satom in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Sogea-Satom in 2026.

Incident Types Sogea-Satom vs Construction Industry Avg (This Year)

No incidents recorded for Sogea-Satom in 2026.

Incident History - Sogea-Satom (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Sogea-Satom Subsidiaries

Sogea-Satom

Construction

Website: http://www.sogea-satom.com

Company Size: 4,052

101

VINCI ConstructionConstruction

VINCIConstruction

VINCI EnergiesInformation Technology & Services

ActemiumAutomation Machinery Manufacturing

OmexomElectric Power Transmission, Control, and Distribution

VINCI Energies ItaliaIT Services and IT Consulting

ComsipStaffing and Recruiting

ElectrixUtilities

Mobility - Enjoy the wayIT Services and IT Consulting

UxelloConstruction

VINCI Energies BrasilIT Services and IT Consulting

VINCI Energies UK & RoITechnology, Information and Internet

Mentor IMC GroupOil and Gas

J & P Richardson IndustriesConstruction

VINCI Energies PortugalHolding Companies

VINCI Energies IndonesiaElectric Power Transmission, Control, and Distribution

AxiansInformation Technology & Services

SECURE Systems & ServicesInformation Technology & Services

VINCI Energies SverigeEnvironmental Services

Omexom SuomiElectric Power Transmission, Control, and Distribution

VINCI Energies NorgeEnvironmental Services

VINCI Energies BelgiumIT Services and IT Consulting

VINCI Energies DeutschlandDesign Services

EuroviaConstruction

ETFRail Transportation

BA Blacktop Group of CompaniesConstruction

EUROVIA ESPAÑA. GRUPO VINCIConstruction

Test CMS-ONEConstruction

VINCI ImmobilierReal Estate

Bikube LyonHospitality

VINCI Immobilier ConseilReal Estate

Student FactoryReal Estate

VINCI ConcessionsTruck Transportation

VINCI AirportsAirlines and Aviation

VINCI HighwaysTransportation/Trucking/Railroad

VINCI AutoroutesTransportation/Trucking/Railroad

Nicholson ConstructionConstruction

LeonardConstruction

Leonard in der D-A-CH RegionConstruction

VINCI insertion EmploiVocational Rehabilitation Services

Fondation VINCI pour la CitéNon-profit Organizations

VINCI Construction FranceConstruction

VINCI Construction Grands ProjetsConstruction

VINCI Building UKConstruction

NUVIAConstruction

NUVIATech InstrumentsMechanical Or Industrial Engineering

NUVIATech ProtectionConstruction

NUVIATech AutomationRobotics Engineering

www.nuvia.co.uk/careersIndustrial Machinery Manufacturing

FreyssinetCivil Engineering

Freyssinet AustraliaCivil Engineering

Freyssinet Civil EngineeringCivil Engineering

Freyssinet RemedialCivil Engineering

Freyssinet UKCivil Engineering

Freyssinet FranceCivil Engineering

Freyssinet IndiaCivil Engineering

Freyssinet New ZealandCivil Engineering

Freyssinet España S.A.U.Civil Engineering

Freyssinet Chile SpACivil Engineering

Freyssinet ArgentinaConstruction

MTS - DESAMIANTAGEConstruction

Freyssinet Azerbaijan LLCCivil Engineering

Freyssinet Suisse SAConstruction

Freyssinet, Inc. - USAConstruction

Soletanche BachyConstruction

Bachy SoletancheConstruction

BESSACConstruction

Bessac Andina S.A.S.Civil Engineering

BESSAC INTERNATIONALConstruction

Tunnel Training CenterCivil Engineering

Roger Bullivant LimitedCivil Engineering

CITA AcademyConstruction

GFWAConstruction

Soletanche Bachy PerúConstruction

Soletanche-Bachy ColombiaCivil Engineering

Berminghammer Foundation EquipmentConstruction

Entrepose GroupOil and Gas

GEOCEANSpecialty Trade Contractors

Entrepose ContractingOil and Gas

Entrepose CMPEAOil and Gas

GeostockOil and Gas

Entrepose DBNOil and Gas

Gulf Industrial Supply FZEOil and Gas

Entrepose IndustriesOil and Gas

MenardConstruction

Menard Polska Sp. z o.o.Construction

Menard FranceConstruction

Menard AsiaCivil Engineering

MENARD Middle East & Central AsiaCivil Engineering

MENARD USAConstruction

Menard OceaniaCivil Engineering

MENARD Canada Inc.Construction

Menard Freyssinet Egypt مينار فريسينه مصرCivil Engineering

Menard UKConstruction

Remea FranceEnvironmental Services

REMEA PLEnvironmental Services

REMEA - Una empresa de MENARD ESPAÑARenewable Energy Semiconductor Manufacturing

Menard LietuvaConstruction

MENARD ESPAÑA, S.AConstruction

Menard IrelandConstruction

VINCI CONSTRUCTION SIIT Services and IT Consulting

Loading…

Sogea-Satom Similar Companies

Consolidated Contractors Company

ccc.net

Consolidated Contractors International company is a leading diversified company carrying out construction, engineering, procurement, development and investment activities internationally. We are committed to providing reliable, amicable, and professional service to our valuable clients, and to being supportive to local businesses and social activities, being friendly to the environment as well as being proactive in the socio-economic environments within which we operate. Our appreciation of our clients' interests, evidenced by meeting their requirements and ensuring high quality work, is the prime directive of our management. Our growth and profitability are maintained through innovation, technical enhancement, and adaptability to all our markets. Our profitability is directed towards sustaining growth and to providing satisfactory returns to our shareholders. Our commitment to growth is firmly linked to our commitment to our employees' continuous development and rewarding careers. We are also devoted to our employee's safety and health, job security, and welfare. Our strength emanates from our distinct culture, strong and close relationships with our clients, employees' competence and loyalty, entrepreneurial and flexible management, capability, dynamism, focus on quality and safety, and commercial acumen.

Royal BAM Group

bam.com

🏗️ Building a sustainable tomorrow at BAM! As leaders in the construction industry, we are committed to pioneering sustainable practices that not only enhance our projects but also contribute to a better future for generations to come. Our strategy revolves around focusing to protect profitability, transforming to strengthen competitive advantage, and expanding for future growth. Join us in making possible by prioritising sustainability in everything we do. 🌍

D.R. Horton

cb drhorton.com

America's Builder is a lofty title, but it's a goal we work toward every day. D.R. Horton started in 1978 in Fort Worth, Texas, and has grown into a national Fortune 500 company. Since 2002, D.R. Horton has been the number one homebuilder in America. We build across the country, bringing our homes to new markets and acquiring like-minded home builders. Through our success, our founding vision hasn't changed. We don't stop building. Wherever the housing market finds itself, we are working to make sure there is a home available for our buyers when they need it. Because we believe homeownership is for everyone, our product lines range from entry-level to luxury. Come work with us or join the team. We'll be happy to show you why we are America's Builder.

GMR Group

cb gmrgroup.in

GMR Group is a leading Indian infrastructure conglomerate with a diversified presence across Airports, Energy, Transportation, Urban Infrastructure, and Sports. With over two decades of experience, the Group has built world-class assets and pioneered innovations in sustainable infrastructure development. GMR Airports Limited (GAL), the Group’s airport arm, is a leading global airport platform company with extensive experience in designing, constructing, and operating world-class, sustainable airports. Operating under the brand name “GMR AERO”, GAL offers pioneering aviation solutions in retail, aero services, and real estate. In 2020, Groupe ADP joined as a strategic partner and is now a co-promoter in GAL, strengthening its global reach and expertise. As Asia’s largest private airport operator and the second-largest globally, GAL operates key airports in Delhi, Hyderabad, Goa, and Medan (Indonesia), while developing greenfield projects in Bhogapuram (India) and Crete (Greece). It also provides integrated aviation services, including MRO, cargo, digital innovation through GMR Innovex, and aviation training through GMR Aero Academy. In the energy and infrastructure space, GMR Power and Urban Infra Limited (GPUIL) leads with a diverse portfolio in clean and renewable energy, smart metering, EV infrastructure, and surface transport projects, backed by strong engineering and EPC capabilities. Under GMR Sports, the Group promotes talent and drives fan engagement through its ownership of iconic teams like Delhi Capitals (IPL), UP Yoddhas (Pro Kabaddi), and international franchises including Dubai Capitals, Seattle Orcas, and more. Committed to inclusive growth, the Group’s CSR arm, GMR Varalakshmi Foundation, works across education, skill development, and healthcare, positively impacting communities across its areas of operation.

VINCI Construction

vinci-construction.com

Premier groupe français et acteur mondial de premier plan de la construction, VINCI Construction réunit plus de 830 entreprises et près de 69000 collaborateurs dans une centaine de pays. Ses expertises s’étendent à l’ensemble des métiers du bâtiment, du génie civil, et des activités spécialisées associés à la construction VINCI Construction se caractérise, outre l’étendue de sces expertises, par un modèle économique articulé en trois composantes complémentaires. Un réseau de filiales locales :  - en France, avec VINCI Construction France, qui dispose en métropole d’un réseau solidement ancré de 450 centres de profit, et VINCI Construction Dom-Tom, représenté par une trentaine de filiales locales implantées dans les départements, territoires et collectivités d’outre-mer ;  - à l’international, avec VINCI Construction UK au Royaume-Uni; avec Warbud, SMP, Prumstav, SMS et APS Alkon en Europe centrale et enfin avec Sogea-Satom en Afrique ; Des métiers de spécialités exercés à l’échelle mondiale : Soletanche Freyssinet (fondations et technologies du sol, structures, nucléaire) ; Entrepose Contracting (infrastructures parapétrolières et gazières) ; Une division dédiée au management et à la réalisation de projets complexes, avec VINCI Construction Grands Projets, VINCI Construction Terrassement et Dodin Campenon Bernard, qui interviennent sur le marché des grands ouvrages de génie civil et de bâtiment, en France et à l’international. VINCI Construction est le creuset de la culture d’entrepreneur du Groupe et de son schéma de management, qui conjugue décentralisation, travail en réseau, autonomie et responsabilité individuelle de l’encadrement, valorisation des hommes et réactivité des organisations.

International Brotherhood of Electrical Workers (IBEW)

cb ibew.org

The IBEW represents 860,000 active. and retired who work in a wide variety of fields, including utilities, construction, telecommunications, broadcasting, manufacturing, railroads and government. The IBEW has members in both the United States and Canada and stands out among the American unions in the AFL-CIO because it is among the largest and has members in so many skilled occupations. As union members, we bargain collectively with our employers over wages, benefits, and rights. Most of us have very limited bargaining power as one person, but as a group, we are strong. And, with a good negotiated contract, we have legal protections we would not have otherwise. Follow us on: Twitter: https://twitter.com/IBEW Facebook: https://www.facebook.com/IBEWFB YouTube: http://www.youtube.com/user/TheElectricalWorker

NCC

ncc.com

NCC is one of the leading construction companies in the Nordics. Based on its expertise in managing complex construction processes, NCC contributes to a positive impact of construction for its customers and society. NCC is one of the largest players in the Nordic construction market, and operates in Sweden, Norway, Denmark and Finland. Operations include building and infrastructure project contracting, asphalt and stone materials production, and commercial property development. In 2024, NCC had a turnover of about SEK 62 bn and 11,800 employees. NCC Infrastructure We build infrastructure for travel, transportation, energy and water throughout the Nordic region. NCC Building Sweden Builds and renovates sustainable housing, offices, healthcare buildings, schools, sports facilities and public buildings for public and private customers in Sweden. NCC Building Nordics Builds and renovates sustainable housing, offices, healthcare buildings, schools, sports facilities and public buildings for public and private customers in Denmark, Finland and Norway. NCC Industry Offers products and services for construction and infrastructure projects in Sweden, Norway, Denmark and Finland. Operations comprise production of stone materials and asphalt products and paving works. NCC Property Development Develops and sells commercial properties in defined growth markets in the Nordic region. NCC Green Industry Transformation In 2024, NCC established a new business area, NCC Green Industry Transformation, that will support industry players in the green transition. We as a company will never become better than our employees. One of our main objectives is therefore to be the industry leader in recruiting, retaining and developing employees. NCC can offer you a varied work life, with unique construction projects and inspiring challenges. Welcome to a corporate culture based on clear values and a strong team spirit.

Bechtel Corporation

cb bechtel.com

Bechtel is a trusted engineering, construction and project management partner to industry and government. Differentiated by the quality of our people and our relentless drive to deliver the most successful outcomes, we align our capabilities to our customers’ objectives to create a lasting positive impact. Since 1898, we have helped customers complete more than 25,000 projects in 160 countries on all seven continents that have created jobs, grown economies, improved the resiliency of the world's infrastructure, increased access to energy, resources, and vital services, and made the world a safer, cleaner place. Bechtel serves the Energy; Infrastructure; Manufacturing & Technology; Mining & Metals; and Nuclear, Security & Environmental markets. Our services span from initial planning and investment, through start-up and operations. Bechtel has received reports about individuals receiving fraudulent job confirmations and requests for interviews, offers, or solicitations for training via letters, emails, social postings, phone calls, instant messages (including Whatsapp) and texts. If you receive unsolicited job or interview offers or are unsure if the offer you received is fraudulent, contact Bechtel at [email protected]. Please forward the email, phone number, and any other documentation you received.

Turner Construction Company

turnerconstruction.com

Turner is a North America-based, international construction services company and is a leading builder in diverse and numerous market segments. The company has earned recognition for undertaking large, complex projects, fostering innovation, embracing emerging technologies, and making a difference for their clients, employees and community. OUR VISION To be the highest value provider of global construction services and technical expertise. Turner embraces a Lean management approach, and a culture that emphasizes collaboration, reliability of scheduling and delivery of the most value while consuming the fewest resources. Lean principles drive the efficient delivery of our services. Turner recognizes the importance of innovation and fostering a culture of continuous improvement. A key element of our company vision is to develop and embrace emerging technologies and processes. As part of our effort to achieve this vision, Turner has a culture where employees share their ideas and engagement with one another to develop innovative ideas as well as evaluate and implement improvements at Turner. Turner fosters a culture of diversity and inclusion in which all employees contribute creative ideas, seek challenges, and have the opportunity to grow. Our diverse and inclusive workforce positions the company to grow, enhances our presence in diverse markets, and helps us build enduring relationships with each other, industry partners, and our clients. Turner understands the environmental, social, and economic impact of our activities and that it is our responsibility to conduct our business in a transparent and ethical manner that supports our goals for client service, community involvement, environmental performance, financial strength and employee health, safety and well-being. Our core values of integrity, teamwork and commitment guide our activities and we expect the organizations with which we do business to share our commitments.

Loading…

NEWS

Sogea-Satom CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

November 17, 2025 08:00 AM

Emmanuel Macron en tournée dans l’Océan Indien

Une délégation d'entreprises françaises pour renforcer les liens économiques. Emmanuel Macron débutera une tournée dans l'Océan Indien le 19...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-26422

SUMMARY

clash-verge-service-ipc before 2.3.0 has a world-reachable IPC endpoint, leading to local privilege escalation.

Published

Date2026-06-06

Updated

Date2026-06-06

RISK INFORMATION (Score: 8.4)

cvss3

Base Score: 8.4

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

2.5

REFERENCES

CVE-2026-11441

SUMMARY

A vulnerability was identified in theonedev onedev up to 15.0.5. This vulnerability affects the function canAccessIssue of the file /issues/ of the component Pull Request Handler. Such manipulation of the argument issue leads to improper authorization. It is possible to launch the attack remotely. Upgrading to version 15.0.6 is able to resolve this issue. It is advisable to upgrade the affected component.

Published

Date2026-06-06

Updated

Date2026-06-06

RISK INFORMATION (Score: 6.3)

cvss2

Base Score: 6.5

Complexity: LOW

AV:N/AC:L/Au:S/C:P/I:P/A:P

cvss3

Base Score: 6.3

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 5.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

2.8

REFERENCES

CVE-2026-11440

SUMMARY

A vulnerability was determined in theonedev onedev up to 15.0.5. This affects an unknown part of the file /repositories/{projectId}/default-branch of the component REST API. This manipulation of the argument project.defaultBranch causes improper authorization. It is possible to initiate the attack remotely. Upgrading to version 15.0.6 is able to mitigate this issue. Upgrading the affected component is advised.

Published

Date2026-06-06

Updated

Date2026-06-06

RISK INFORMATION (Score: 6.3)

cvss2

Base Score: 6.5

Complexity: LOW

AV:N/AC:L/Au:S/C:P/I:P/A:P

cvss3

Base Score: 6.3

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 5.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

2.8

REFERENCES

CVE-2026-11439

SUMMARY

A vulnerability was found in theonedev onedev up to 15.0.5. Affected by this issue is some unknown functionality of the file /projects/ of the component Parent Project Handler. The manipulation of the argument project.parentId results in improper authorization. The attack may be performed from remote. Upgrading to version 15.0.6 can resolve this issue. It is recommended to upgrade the affected component.

Published

Date2026-06-06

Updated

Date2026-06-06

RISK INFORMATION (Score: 6.3)

cvss2

Base Score: 6.5

Complexity: LOW

AV:N/AC:L/Au:S/C:P/I:P/A:P

cvss3

Base Score: 6.3

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 5.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

2.8

REFERENCES

CVE-2026-11438

SUMMARY

A vulnerability has been found in theonedev onedev up to 15.0.5. Affected by this vulnerability is an unknown functionality of the file /projects. The manipulation of the argument project.forkedFromId leads to improper authorization. The attack is possible to be carried out remotely. Upgrading to version 15.0.6 addresses this issue. Upgrading the affected component is recommended.

Published

Date2026-06-06

Updated

Date2026-06-06

RISK INFORMATION (Score: 6.3)

cvss2

Base Score: 6.5

Complexity: LOW

AV:N/AC:L/Au:S/C:P/I:P/A:P

cvss3

Base Score: 6.3

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 5.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

2.8

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…