Comparison Overview

Q: Between TOTVS company and Cisco company, which one has the best AI Cybersecurity Score ?

TOTVS company demonstrates a stronger AI Cybersecurity Score compared to Cisco company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Q: Between TOTVS company and Cisco company, which one has experienced more cyber incidents in the past ?

Cisco company has historically faced a number of disclosed cyber incidents, whereas TOTVS company has not reported any.

Q: Between TOTVS company and Cisco company, which one has experienced more cyber incidents this year ?

In the current year, Cisco company has reported more cyber incidents than TOTVS company.

Q: Between TOTVS company and Cisco company, which one has experienced at least one ransomware attack ?

Cisco company has confirmed experiencing a ransomware attack, while TOTVS company has not reported such incidents publicly.

Q: Between TOTVS company and Cisco company, which one has experienced at least one data breach ?

Cisco company has disclosed at least one data breach, while TOTVS company has not reported such incidents publicly.

Q: Between TOTVS company and Cisco company, which one has experienced at least one targeted cyberattack ?

Cisco company has reported targeted cyberattacks, while TOTVS company has not reported such incidents publicly.

Q: Between TOTVS company and Cisco company, which one has experienced at least one vulnerability ?

Cisco company has disclosed at least one vulnerability, while TOTVS company has not reported such incidents publicly.

Q: Between TOTVS company and Cisco company, which one holds the most compliance certifications ?

Neither TOTVS nor Cisco holds any compliance certifications.

Q: Between TOTVS company and Cisco company, which one has the most subsidiaries ?

Cisco company has more subsidiaries worldwide compared to TOTVS company.

TOTVS

Av Braz Leme, 1000, Sao Paulo, SP, BR, 02511-900

Last Update: 2025-12-09

View Profile

Between 750 and 799

https://www.totvs.com

Olá, somos a TOTVS! A maior empresa de tecnologia do Brasil. 🤓 Líder absoluta em sistemas e plataformas para empresas, a TOTVS possui mais de 70 mil clientes. Indo muito além do ERP, oferece tecnologia completa para digitalização dos negócios por meio de 3 unidades de negócio: - Gestão: ERPs, soluções cross e sistemas especializados visando garantir mais produtividade, eficiência e governança para os negócios; 💻 - Techfin: ERP Banking que oferece soluções de crédito B2B e pagamento, integrados a sistemas de gestão; 💸 - RD Station: Ferramentas digitais de marketing, vendas e relacionamento, para empresas de todos os portes e segmentos. 🚀 Nos últimos 5 anos, a companhia investiu R$3 bilhões em pesquisa e desenvolvimento para atender de maneira cada vez mais especializada empresas de 12 segmentos da economia, tornando-se um trusted advisor de seus clientes. A TOTVS é uma potência tecnológica que apoia a evolução de empresas de norte a sul do país. O Brasil, que faz, faz com TOTVS.

NAICS: 5112

NAICS Definition: Software Publishers

Employees: 16,304

Subsidiaries: 0

12-month incidents

0

Known data breaches

0

Attack type number

0

View Profile

Cisco

Tasman Way, San Jose, CA, US, 95134

Last Update: 2025-12-11

Between 600 and 649

http://www.cisco.com

Cisco is the worldwide technology leader that is revolutionizing the way organizations connect and protect in the AI era. For more than 40 years, Cisco has securely connected the world. With its industry leading AI-powered solutions and services, Cisco enables its customers, partners and communities to unlock innovation, enhance productivity and strengthen digital resilience. With purpose at its core, Cisco remains committed to creating a more connected and inclusive future for all.

NAICS: 5112

NAICS Definition: Software Publishers

Employees: 95,475

Subsidiaries: 34

12-month incidents

6

Known data breaches

3

Attack type number

5

TOTVS

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Cisco

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Software Development Industry Average (This Year)

No incidents recorded for TOTVS in 2025.

Incidents vs Software Development Industry Average (This Year)

Cisco has 952.63% more incidents than the average of same-industry companies with at least one recorded incident.

Incident History — TOTVS (X = Date, Y = Severity)

TOTVS cyber incidents detection timeline including parent company and subsidiaries

Incident History — Cisco (X = Date, Y = Severity)

Cisco cyber incidents detection timeline including parent company and subsidiaries

TOTVS

Incidents

No Incident

Cisco

Incidents

Date Detected: 11/2025

Type:Ransomware

Attack Vector: Exploited Vulnerabilities (unspecified), Phishing/Social Engineering (likely), DDoS Attacks, Threatening Calls to Executives

Motivation: Financial Gain (ransomware proceeds, access sales)

Blog: Blog

Date Detected: 9/2025

Type:Cyber Attack

Attack Vector: Vulnerability Exploitation (Cisco ASA), Malware Implantation, Command Execution, Potential Data Exfiltration

Motivation: Espionage

Blog: Blog

Date Detected: 8/2025

Type:Vulnerability

Attack Vector: Remote Code Execution (RCE), Unauthenticated Access to VPN Endpoints, Crafted HTTP Requests

Motivation: Opportunistic Exploitation, Potential Data Theft, Malware Distribution

Blog: Blog

TOTVS company demonstrates a stronger AI Cybersecurity Score compared to Cisco company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Cisco company has historically faced a number of disclosed cyber incidents, whereas TOTVS company has not reported any.

In the current year, Cisco company has reported more cyber incidents than TOTVS company.

Cisco company has confirmed experiencing a ransomware attack, while TOTVS company has not reported such incidents publicly.

Cisco company has disclosed at least one data breach, while TOTVS company has not reported such incidents publicly.

Cisco company has reported targeted cyberattacks, while TOTVS company has not reported such incidents publicly.

Cisco company has disclosed at least one vulnerability, while TOTVS company has not reported such incidents publicly.

Neither TOTVS nor Cisco holds any compliance certifications.

Neither company holds any compliance certifications.

Cisco company has more subsidiaries worldwide compared to TOTVS company.

Cisco company employs more people globally than TOTVS company, reflecting its scale as a Software Development.

Neither TOTVS nor Cisco holds SOC 2 Type 1 certification.

Neither TOTVS nor Cisco holds SOC 2 Type 2 certification.

Neither TOTVS nor Cisco holds ISO 27001 certification.

Neither TOTVS nor Cisco holds PCI DSS certification.

Neither TOTVS nor Cisco holds HIPAA certification.

Neither TOTVS nor Cisco holds GDPR certification.

Description

NXLog Agent before 6.11 can load a file specified by the OPENSSL_CONF environment variable.

Published

Date

2025-12-14

Updated

Date

2025-12-14

Risk Information

cvss3

Base: 8.1

Severity: HIGH

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

References

https://docs.nxlog.co/agent/current/release-notes.html#nxlog-agent-6-11

Description

uriparser through 0.9.9 allows unbounded recursion and stack consumption, as demonstrated by ParseMustBeSegmentNzNc with large input containing many commas.

Published

Date

2025-12-14

Updated

Date

2025-12-14

Risk Information

cvss3

Base: 2.9

Severity: HIGH

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

References

Description

A vulnerability was detected in Mayan EDMS up to 4.10.1. The affected element is an unknown function of the file /authentication/. The manipulation results in cross site scripting. The attack may be performed from remote. The exploit is now public and may be used. Upgrading to version 4.10.2 is sufficient to fix this issue. You should upgrade the affected component. The vendor confirms that this is "[f]ixed in version 4.10.2". Furthermore, that "[b]ackports for older versions in process and will be out as soon as their respective CI pipelines complete."

Published

Date

2025-12-14

Updated

Date

2025-12-14

Risk Information

cvss2

Base: 5.0

Severity: LOW

AV:N/AC:L/Au:N/C:N/I:P/A:N

cvss3

Base: 4.3

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

cvss4

Base: 5.3

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

MJML through 4.18.0 allows mj-include directory traversal to test file existence and (in the type="css" case) read files. NOTE: this issue exists because of an incomplete fix for CVE-2020-12827.

Published

Date

2025-12-14

Updated

Date

2025-12-14

Risk Information

cvss3

Base: 4.5

Severity: HIGH

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:L

References

https://github.com/mjmlio/mjml/issues/3018

Description

A half-blind Server Side Request Forgery (SSRF) vulnerability exists in kube-controller-manager when using the in-tree Portworx StorageClass. This vulnerability allows authorized users to leak arbitrary information from unprotected endpoints in the control plane’s host network (including link-local or loopback services).

Published

Date

2025-12-14

Updated

Date

2025-12-14

Risk Information

cvss3

Base: 5.8

Severity: HIGH

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N

References

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

TOTVS

VS

Cisco

TOTVS

Cisco

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Software Development Industry Average (This Year)

Incidents vs Software Development Industry Average (This Year)

Incident History — TOTVS (X = Date, Y = Severity)

Incident History — Cisco (X = Date, Y = Severity)

Notable Incidents

No Incident

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2025-67900

Risk Information

CVE-2025-67899

Risk Information

CVE-2025-14691

Risk Information

CVE-2025-67898

Risk Information

CVE-2025-13281

Risk Information

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

TOTVS

VS

Cisco

TOTVS

Cisco

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Software Development Industry Average (This Year)

Incidents vs Software Development Industry Average (This Year)

Incident History — TOTVS (X = Date, Y = Severity)

Incident History — Cisco (X = Date, Y = Severity)

Notable Incidents

No Incident

🔒 Incident : Ransomware CIS0702107111125

🔒 Incident : Cyber Attack CIS5802058092725

🔒 Incident : Vulnerability CIS0692106093025

FAQ

Between TOTVS company and Cisco company, which one has the best AI Cybersecurity Score ?

Between TOTVS company and Cisco company, which one has experienced more cyber incidents in the past ?

Between TOTVS company and Cisco company, which one has experienced more cyber incidents this year ?

Between TOTVS company and Cisco company, which one has experienced at least one ransomware attack ?

Between TOTVS company and Cisco company, which one has experienced at least one data breach ?

Between TOTVS company and Cisco company, which one has experienced at least one targeted cyberattack ?

Between TOTVS company and Cisco company, which one has experienced at least one vulnerability ?

Between TOTVS company and Cisco company, which one holds the most compliance certifications ?

Between TOTVS company and Cisco company, which one holds the fewest compliance certifications ?

Between TOTVS company and Cisco company, which one has the most subsidiaries ?

Between TOTVS company and Cisco company, which one has the largest number of employees ?

Between TOTVS and Cisco, which company holds both SOC 2 Type 1 certifications ?

Between TOTVS and Cisco, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — TOTVS or Cisco ?

Which company is PCI DSS compliant — TOTVS or Cisco ?

Between TOTVS and Cisco, which company complies with HIPAA regulations for healthcare data ?

Between TOTVS and Cisco, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2025-67900

Risk Information

CVE-2025-67899

Risk Information

CVE-2025-14691

Risk Information

CVE-2025-67898

Risk Information

CVE-2025-13281

Risk Information