SORBONNE VENTURE
Company Details
Linkedin ID:
sorbonne-venture
Website:
Employees number:
1
Number of followers:
184,174
NAICS:
5239
Industry Type:
Homepage:
sorbonne-venture.fr
IP Addresses:
0
Company ID:
SOR_3334674
Scan Status:
In-progress
SORBONNE VENTURE Company CyberSecurity Posture
sorbonne-venture.fr
An exceptional partnership between Audacia, Aloe private Equity and Sorbonne Univeristé, firmly anchored in a shared vision. Through technological advances resulting from institutes and centers of academic excellence, SORBONNE VENTURE plays a major role in promoting Deeptech innovation in health by investing in academic startups.
SORBONNE VENTURE A.I CyberSecurity Scoring
SORBONNE VENTURE Risk Score (AI oriented)Between 650 and 699
SORBONNE VENTURE
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
SORBONNE VENTURE Global Score (TPRM)XXXX
SORBONNE VENTURE
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
SORBONNE VENTURE Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
SORBONNE VENTURE: Sorbonne Université allegedly subjected to major hack
Breach
Rankiteo Explanation
Attack with significant impact with internal employee data leaks
Description: Paris-based Sorbonne Université had its employees' data purportedly compromised following a cybersecurity incident , reports Cybernews Analysis of a data sample shared by attackers revealed 32,000 employee entries, including full names, job positions, departments, email addresses, contract types, salaries, ZIP codes, and internal codes, according to Cybernews researchers, who noted that other information touted to have been stolen was absent. Threat actors previously alleged stealing bank account numbers, digital payslips, salary transfer details, Social Security numbers, sick leave documents, CVs, diplomas, and cover letters, as well as employee listings, internal directories, and assignment tables. "The most likely potential impact is data abuse for social engineering attacks. If it is true that the threat actor has banking and social security information of the employees, there is also a risk for financial fraud and identity theft," said researchers. Sorbonne Université has yet to comment on the claimed breach.
SORBONNE VENTURE Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for SORBONNE VENTURE
Incidents vs Investment Management Industry Average (This Year)
SORBONNE VENTURE has 0.0% fewer incidents than the average of same-industry companies with at least one recorded incident.
Incidents vs All-Companies Average (This Year)
SORBONNE VENTURE has 56.25% more incidents than the average of all companies with at least one recorded incident.
Incident Types SORBONNE VENTURE vs Investment Management Industry Avg (This Year)
SORBONNE VENTURE reported 1 incidents this year: 0 cyber attacks, 0 ransomware, 0 vulnerabilities, 1 data breaches, compared to industry peers with at least 1 incident.
Incident History — SORBONNE VENTURE (X = Date, Y = Severity)
SORBONNE VENTURE cyber incidents detection timeline including parent company and subsidiaries
SORBONNE VENTURE Company Subsidiaries
An exceptional partnership between Audacia, Aloe private Equity and Sorbonne Univeristé, firmly anchored in a shared vision. Through technological advances resulting from institutes and centers of academic excellence, SORBONNE VENTURE plays a major role in promoting Deeptech innovation in health by investing in academic startups.
Loading...
SORBONNE VENTURE Similar Companies
Ghadir Investment Company
Ghadir Investment Company has been established in 1992-93 as a public joint stock company (Initially named “Bank Saderat Investment Co. – Private Joint Stock). It commenced its operations in a wide variety of business fields and by managing over 120 subsidiary companies. Later in 1996, this company
Ackermans & van Haaren
Ackermans & van Haaren is a diversified group active in 4 core sectors: Marine Engineering & Contracting (DEME, one of the largest dredging companies in the world - CFE, a construction group with headquarters in Belgium), Private Banking (Delen Private Bank, one of the largest independent private as
Sabanci Holding
Sabancı Holding is one of Turkey’s leading conglomerate, engaged in a wide variety of business activities through its subsidiaries and affiliates, mainly in the banking, financial services, energy, industrials, building materials and retail sectors. Our Group companies most of which are leaders i
Essar
Essar, with an entrepreneurial track record spanning 50+ years, specialises in investing and developing assets to create value in core sectors such as Energy, Infrastructure, Metals & Mining, and Technology & Retail. With a presence in eight countries, Essar generates revenues of US$15 billion and p
Entekhab Group
Entekhab Group is one of the largest Iranian international holdings which seeks to impact industry and economy of Iran and the world. The impact which more than anything, is derived from updated and localized knowledge and technology which has so far been implemented in most Iranian economic fields.
Odebrecht
Founded in 1944, Odebrecht is a Brazilian group with diverse businesses and world-class standards of quality. Its Members, guided by the Group’s own philosophy, the Odebrecht Entrepreneurial Technology (TEO), provide services and manufacture products for clients on five continents. As part of their
Pudur Corporation
On any given day, Sixty Million people use Pudur products and services to get more out of life. With more than twenty business verticals focused on innovation,technology, health, wellbeing, environment, investments, natural resources, trading, energy, agro, real estate, telecom, defense, banking
Empresas Copec
Empresas Copec participa en dos grandes áreas de actividad: recursos naturales y energía. A lo largo de 89 años, la Compañía ha impulsado importantes programas de inversión, elevando la escala de sus operaciones, ampliando sus fronteras, aprovechando sinergias y entregando sostenibilidad a sus act
.png)
SORBONNE VENTURE CyberSecurity News
December 02, 2025 10:29 PM
Senator Schmitt Emphasizes Need to Strengthen, Update Cybersecurity Technology
WASHINGTON — Today, during a Senate Commerce Committee hearing, U.S. Senator Eric Schmitt (R-MO) questioned witnesses about the need to...
December 02, 2025 10:27 PM
Alexandria cybersecurity startup SpecterOps raises $30M
Fast-growing Alexandria cybersecurity startup SpecterOps has raised $30 million in new funding, bringing its total raised since March to...
December 02, 2025 10:26 PM
Press Release: Senator Eric Schmitt Urges Modernization of Cybersecurity Technology in Senate Hearing
Senator Eric Schmitt advocates for enhanced cybersecurity measures during a Senate hearing, addressing procurement and satellite security...
December 02, 2025 10:26 PM
Press Release: Deb Fischer Holds Hearing on Protecting U.S. Telecommunications Networks amid Cybersecurity Concerns
Senator Deb Fischer held a hearing addressing cybersecurity threats and advocating for the FACT Act to protect telecommunications.
December 02, 2025 10:10 PM
Top Cybersecurity Stocks To Consider - December 2nd
CrowdStrike, Palo Alto Networks, Fortinet, SentinelOne, Globant, BlackBerry, and Arqit Quantum are the seven Cybersecurity stocks to watch...
December 02, 2025 10:09 PM
A Primer On NYDFS' 3rd-Party Cybersecurity Guidance
The New York Department of Financial Services' recently released comprehensive guidance for registrants on managing cybersecurity risks...
December 02, 2025 10:07 PM
Phoenix Education Partners reports cybersecurity incident at University of Phoenix
Phoenix Education Partners, Inc. (NYSE:PXED) disclosed Tuesday that its subsidiary, the University of Phoenix, experienced a cybersecurity...
December 02, 2025 10:07 PM
4 Manufacturing Cyberthreats That Will Define 2026
Manufacturers have long been concerned about downtime, safety and supply chain disruptions. In 2026, add one more to the top of that list:...
December 02, 2025 09:57 PM
Cybersecurity co Check Point falls after $1.5 bln convertible deal unveiled
... ** Israeli cybersecurity solutions provider announces private offering of $1.5 bln 0% 5-yr convertible bonds.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
SORBONNE VENTURE CyberSecurity History Information
Official Website of SORBONNE VENTURE
The official website of SORBONNE VENTURE is https://sorbonne-venture.fr/.
SORBONNE VENTURE’s AI-Generated Cybersecurity Score
According to Rankiteo, SORBONNE VENTURE’s AI-generated cybersecurity score is 682, reflecting their Weak security posture.
How many security badges does SORBONNE VENTURE’ have ?
According to Rankiteo, SORBONNE VENTURE currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does SORBONNE VENTURE have SOC 2 Type 1 certification ?
According to Rankiteo, SORBONNE VENTURE is not certified under SOC 2 Type 1.
Does SORBONNE VENTURE have SOC 2 Type 2 certification ?
According to Rankiteo, SORBONNE VENTURE does not hold a SOC 2 Type 2 certification.
Does SORBONNE VENTURE comply with GDPR ?
According to Rankiteo, SORBONNE VENTURE is not listed as GDPR compliant.
Does SORBONNE VENTURE have PCI DSS certification ?
According to Rankiteo, SORBONNE VENTURE does not currently maintain PCI DSS compliance.
Does SORBONNE VENTURE comply with HIPAA ?
According to Rankiteo, SORBONNE VENTURE is not compliant with HIPAA regulations.
Does SORBONNE VENTURE have ISO 27001 certification ?
According to Rankiteo,SORBONNE VENTURE is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of SORBONNE VENTURE
SORBONNE VENTURE operates primarily in the Investment Management industry.
Number of Employees at SORBONNE VENTURE
SORBONNE VENTURE employs approximately 1 people worldwide.
Subsidiaries Owned by SORBONNE VENTURE
SORBONNE VENTURE presently has no subsidiaries across any sectors.
SORBONNE VENTURE’s LinkedIn Followers
SORBONNE VENTURE’s official LinkedIn profile has approximately 184,174 followers.
NAICS Classification of SORBONNE VENTURE
SORBONNE VENTURE is classified under the NAICS code 5239, which corresponds to Other Financial Investment Activities.
SORBONNE VENTURE’s Presence on Crunchbase
No, SORBONNE VENTURE does not have a profile on Crunchbase.
SORBONNE VENTURE’s Presence on LinkedIn
Yes, SORBONNE VENTURE maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/sorbonne-venture.
Cybersecurity Incidents Involving SORBONNE VENTURE
As of December 02, 2025, Rankiteo reports that SORBONNE VENTURE has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
SORBONNE VENTURE has an estimated 5,019 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at SORBONNE VENTURE ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
vLLM is an inference and serving engine for large language models (LLMs). Prior to 0.11.1, vllm has a critical remote code execution vector in a config class named Nemotron_Nano_VL_Config. When vllm loads a model config that contains an auto_map entry, the config class resolves that mapping with get_class_from_dynamic_module(...) and immediately instantiates the returned class. This fetches and executes Python from the remote repository referenced in the auto_map string. Crucially, this happens even when the caller explicitly sets trust_remote_code=False in vllm.transformers_utils.config.get_config. In practice, an attacker can publish a benign-looking frontend repo whose config.json points via auto_map to a separate malicious backend repo; loading the frontend will silently run the backend’s code on the victim host. This vulnerability is fixed in 0.11.1.
Risk Information
cvss3
Base: 7.1
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
Description
fastify-reply-from is a Fastify plugin to forward the current HTTP request to another server. Prior to 12.5.0, by crafting a malicious URL, an attacker could access routes that are not allowed, even though the reply.from is defined for specific routes in @fastify/reply-from. This vulnerability is fixed in 12.5.0.
Risk Information
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 21.0.2, 20.3.15, and 19.2.17, A Stored Cross-Site Scripting (XSS) vulnerability has been identified in the Angular Template Compiler. It occurs because the compiler's internal security schema is incomplete, allowing attackers to bypass Angular's built-in security sanitization. Specifically, the schema fails to classify certain URL-holding attributes (e.g., those that could contain javascript: URLs) as requiring strict URL security, enabling the injection of malicious scripts. This vulnerability is fixed in 21.0.2, 20.3.15, and 19.2.17.
Risk Information
cvss4
Base: 8.5
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Gin-vue-admin is a backstage management system based on vue and gin. In 2.8.6 and earlier, attackers can delete any file on the server at will, causing damage or unavailability of server resources. Attackers can control the 'FileMd5' parameter to delete any file and folder.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Portkey.ai Gateway is a blazing fast AI Gateway with integrated guardrails. Prior to 1.14.0, the gateway determined the destination baseURL by prioritizing the value in the x-portkey-custom-host request header. The proxy route then appends the client-specified path to perform an external fetch. This can be maliciously used by users for SSRF attacks. This vulnerability is fixed in 1.14.0.
Risk Information
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=sorbonne-venture' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
