Trinity Health
Company Details
Linkedin ID:
trinityhealth
Website:
Employees number:
16,726
Number of followers:
130,612
NAICS:
62
Industry Type:
Homepage:
trinity-health.org
IP Addresses:
0
Company ID:
TRI_1061331
Scan Status:
In-progress
Trinity Health Company CyberSecurity Posture
trinity-health.org
Trinity Health is one of the largest not-for-profit, Catholic health care systems in the nation. It is a family of 123,000 colleagues and nearly 27,000 physicians and clinicians caring for diverse communities across 26 states. Nationally recognized for care and experience, the Trinity Health system includes 88 hospitals, 135 continuing care locations, the second largest PACE program in the country, 136 urgent care locations and many other health and well-being services. Based in Livonia, Michigan, its annual operating revenue is $21.5 billion with $1.4 billion returned to its communities in the form of charity care and other community benefit programs.
Trinity Health A.I CyberSecurity Scoring
Trinity Health Risk Score (AI oriented)Between 700 and 749
Trinity Health
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Trinity Health Global Score (TPRM)XXXX
Trinity Health
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Trinity Health Company CyberSecurity News & History
Past Incidents
3
Attack Types
2
Trinity Health
Breach
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: The California Office of the Attorney General disclosed a data breach affecting **Trinity Health** on **April 5, 2021**, stemming from an incident on **January 20, 2021**. The breach resulted from **unauthorized access** to files stored on an **Accellion file transfer appliance**, a third-party vendor system used by the organization. The compromised data included **protected health information (PHI)**, though the exact number of affected individuals remains undisclosed. The exposure of sensitive health records poses risks such as identity theft, fraud, or misuse of medical data, potentially impacting patients’ privacy and trust in the healthcare provider. While Trinity Health took steps to mitigate the breach—including notifying regulatory bodies and likely enhancing security measures—the incident underscores vulnerabilities in third-party vendor systems and the critical need for robust cybersecurity protocols in handling PHI.
Trinity Health Corp.
Breach
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: Trinity Health Corp. experienced a data breach in January 2021 due to a vulnerability in the **Accellion File Transfer Appliance**, exposing sensitive patient data. The compromised information included **names, addresses, emails, dates of birth, Social Security numbers, medical records (healthcare providers, services, lab results, medications, immunization types), payment details, credit card information, and claims data**. Approximately **18,153 California residents** were affected, leading to a **$450,000 class-action settlement**. Victims could claim **up to $1,000 for out-of-pocket losses** (e.g., identity theft, credit monitoring, card replacements) and a **pro rata cash payment** (ranging from $11 to $231, depending on claim participation). The breach stemmed from **unauthorized access to patient files**, raising concerns over inadequate data protection measures. While Trinity Health denied liability, the settlement addressed financial and reputational damages, including potential fraud risks for affected individuals.
Trinity Health
Cyber Attack
Rankiteo Explanation
Attack limited on finance or reputation
Description: The Maine Office of the Attorney General reported a data breach involving Trinity Health on October 23, 2020. The breach, reported to have occurred between April 18, 2020, and May 16, 2020, was due to a cyber-attack on Blackbaud's network, affecting 6,288 individuals, including at least 6 Maine residents, and compromising financial account details among other types of information.
Trinity Health Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Trinity Health
Incidents vs Hospitals and Health Care Industry Average (This Year)
No incidents recorded for Trinity Health in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Trinity Health in 2025.
Incident Types Trinity Health vs Hospitals and Health Care Industry Avg (This Year)
No incidents recorded for Trinity Health in 2025.
Incident History — Trinity Health (X = Date, Y = Severity)
Trinity Health cyber incidents detection timeline including parent company and subsidiaries
Trinity Health Company Subsidiaries
Trinity Health is one of the largest not-for-profit, Catholic health care systems in the nation. It is a family of 123,000 colleagues and nearly 27,000 physicians and clinicians caring for diverse communities across 26 states. Nationally recognized for care and experience, the Trinity Health system includes 88 hospitals, 135 continuing care locations, the second largest PACE program in the country, 136 urgent care locations and many other health and well-being services. Based in Livonia, Michigan, its annual operating revenue is $21.5 billion with $1.4 billion returned to its communities in the form of charity care and other community benefit programs.
Loading...
Trinity Health Similar Companies
Houston Methodist
Houston Methodist is one of the nation’s leading health systems and academic medical centers. The health system consists of eight hospitals: Houston Methodist Hospital, its flagship academic hospital in the Texas Medical Center, seven community hospitals and one long-term acute care hospital through
Relationships are the heart of our culture. They help us create a sense of family among our residents, associates and patients. Integrity is our soul. It guides us to be open in our communication with each other, and it enables us to make the right decisions for the people who have entrusted us with
A Dasa é a maior rede de saúde integrada do Brasil. Faz parte da vida de mais de 20 milhões de pessoas por ano, com alta tecnologia, experiência intuitiva e atitude à frente do tempo. Com mais de 50 mil colaboradores e 250 mil médicos parceiros, existe para ser a saúde que as pessoas desejam e que
St. Luke's University Health Network
Founded in 1872, St. Luke’s University Health Network (SLUHN) is a fully integrated, regional, non-profit network of more than 23,000 employees providing services at 16 campuses and 350+ outpatient sites. With annual net revenue of $4 billion, the Network’s service area includes 11 counties in two s
Abbott is a global healthcare leader that helps people live more fully at all stages of life. Our portfolio of life-changing technologies spans the spectrum of healthcare, with leading businesses and products in diagnostics, medical devices, nutritional and branded generic medicines. Our 114,000 col
Texas Health Resources
At Texas Health Resources, our mission is to improve the health of the people in the communities we serve. We are one of the largest faith-based, nonprofit health systems in the United States with a team of more than 28,000 employees of wholly owned/operated facilities and consolidated joint ventur
Omega Healthcare Management Services
Founded in 2003, Omega Healthcare Management Services® (Omega Healthcare) empowers healthcare to thrive via intelligent solutions that optimize revenue cycle operations, administrative workflows, care coordination, and clinical research on a global scale. The company works with providers, payers, li
VCU Health
We are a strong, passionate team of more than 12,500 who take pride in caring for every person who comes through our doors. We lift each other up so we can provide the very best and safest care to those who need us most. Together. Every day. With the support of our university, we make up an acade
Keralty
Anteriormente Organización Sanitas Internacional, Keralty es un grupo empresarial de valor en salud, con más de 40 años de experiencia conformado por empresas de aseguramiento y prestación de servicios de salud y una red propia hospitalaria y asistencial. También forman parte de Keralty institucion
.png)
Trinity Health CyberSecurity News
November 26, 2025 01:55 PM
Trinity Health; Precision Imaging Centers Settle Class Action Data Breach Lawsuits
Trinity Health in Michigan and Precision Imaging Centers in Florida have agreed to settle class action lawsuits that alleged negligence and...
October 26, 2025 07:00 AM
Healthcare Data Breach Statistics
In 2023, 725 data breaches were reported to OCR and across those breaches, more than 133 million records were exposed or impermissibly disclosed.
October 15, 2025 07:00 AM
This Week’s Health IT Jobs – October 15, 2025
It can be very overwhelming scrolling through job board after job board in search of a position that fits your wants and needs.
September 30, 2025 07:00 AM
Trinity Health’s MercyOne CEO to retire in January
MercyOne President and CEO Robert Ritz will retire from his position Jan. 2. The search for a new leader will begin in the coming months,...
September 10, 2025 07:00 AM
Trinity Health launches new chief operating officer model
The changes, including a new Office of the Chief Operating Officer, are part of an operational realignment at Trinity.
July 31, 2025 07:00 AM
Trinity Health CEO eyes ambulatory care opportunities
Trinity Health is looking for physician partners to boost ambulatory services, President and CEO Mike Slubowski said.
July 09, 2025 07:00 AM
When Cyberattacks Strike: Is Your Board Ready?
In this conversation, Ajay Gupta, board chair of Trinity Health Mid-Atlantic and CEO of HSR.health, speaks about the vital role hospital...
June 23, 2025 07:00 AM
The top 10 nonprofit health systems by 2024 operating revenue
Operating revenues popped across fiscal 2024 as many of the largest nonprofits combined strong demand with capacity increases.
April 01, 2025 07:00 AM
Innovative Rural Hospitals Think Beyond Tradition to Improve Access to Care
Last year, Mercy — a large health system serving many rural communities across Missouri and surrounding states — expanded its use of...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Trinity Health CyberSecurity History Information
Official Website of Trinity Health
The official website of Trinity Health is http://www.trinity-health.org.
Trinity Health’s AI-Generated Cybersecurity Score
According to Rankiteo, Trinity Health’s AI-generated cybersecurity score is 732, reflecting their Moderate security posture.
How many security badges does Trinity Health’ have ?
According to Rankiteo, Trinity Health currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Trinity Health have SOC 2 Type 1 certification ?
According to Rankiteo, Trinity Health is not certified under SOC 2 Type 1.
Does Trinity Health have SOC 2 Type 2 certification ?
According to Rankiteo, Trinity Health does not hold a SOC 2 Type 2 certification.
Does Trinity Health comply with GDPR ?
According to Rankiteo, Trinity Health is not listed as GDPR compliant.
Does Trinity Health have PCI DSS certification ?
According to Rankiteo, Trinity Health does not currently maintain PCI DSS compliance.
Does Trinity Health comply with HIPAA ?
According to Rankiteo, Trinity Health is not compliant with HIPAA regulations.
Does Trinity Health have ISO 27001 certification ?
According to Rankiteo,Trinity Health is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Trinity Health
Trinity Health operates primarily in the Hospitals and Health Care industry.
Number of Employees at Trinity Health
Trinity Health employs approximately 16,726 people worldwide.
Subsidiaries Owned by Trinity Health
Trinity Health presently has no subsidiaries across any sectors.
Trinity Health’s LinkedIn Followers
Trinity Health’s official LinkedIn profile has approximately 130,612 followers.
NAICS Classification of Trinity Health
Trinity Health is classified under the NAICS code 62, which corresponds to Health Care and Social Assistance.
Trinity Health’s Presence on Crunchbase
No, Trinity Health does not have a profile on Crunchbase.
Trinity Health’s Presence on LinkedIn
Yes, Trinity Health maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/trinityhealth.
Cybersecurity Incidents Involving Trinity Health
As of November 27, 2025, Rankiteo reports that Trinity Health has experienced 3 cybersecurity incidents.
Number of Peer and Competitor Companies
Trinity Health has an estimated 29,991 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Trinity Health ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach and Cyber Attack.
What was the total financial impact of these incidents on Trinity Health ?
Total Financial Loss: The total financial loss from these incidents is estimated to be $450 thousand.
How does Trinity Health detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an communication strategy with direct mail notices to affected california residents..
Incident Details
Can you provide details on each incident ?
Title: Data Breach at Trinity Health
Description: The Maine Office of the Attorney General reported a data breach involving Trinity Health on October 23, 2020. The breach, reported to have occurred between April 18, 2020, and May 16, 2020, was due to a cyber-attack on Blackbaud's network, affecting 6,288 individuals, including at least 6 Maine residents, and compromising financial account details among other types of information.
Date Detected: 2020-10-23
Date Publicly Disclosed: 2020-10-23
Type: Data Breach
Attack Vector: Cyber-attack on third-party network
Title: Trinity Health Data Breach via Accellion File Transfer Appliance
Description: The California Office of the Attorney General reported a data breach incident involving Trinity Health on April 5, 2021. The breach occurred on January 20, 2021, due to unauthorized access to files on an Accellion file transfer appliance, potentially affecting certain protected health information, though the total number of individuals impacted is unknown.
Date Detected: 2021-01-20
Date Publicly Disclosed: 2021-04-05
Type: Data Breach
Attack Vector: Unauthorized Access (Accellion File Transfer Appliance Vulnerability)
Vulnerability Exploited: Accellion FTA (File Transfer Appliance) Vulnerability
Title: Trinity Health Data Breach via Accellion File Transfer Appliance (January 2021)
Description: Trinity Health Corp. experienced a data breach in January 2021 due to a vulnerability in the Accellion File Transfer Appliance (FTA). Unauthorized parties accessed sensitive patient data, including names, addresses, Social Security numbers, medical records, and payment information. The breach affected approximately 18,153 California residents, leading to a $450,000 class action settlement. Affected individuals may claim up to $1,000 for out-of-pocket losses and a pro rata cash payment, depending on claim participation rates.
Date Detected: 2021-01-20
Type: Data Breach
Attack Vector: Exploitation of vulnerability in Accellion File Transfer Appliance (FTA)
Vulnerability Exploited: Accellion FTA (specific CVE not mentioned)
Threat Actor: Unauthorized party (unknown specific actor)
Motivation: Financial GainData Theft
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
How does the company identify the attack vectors used in incidents ?
Identification of Attack Vectors: The company identifies the attack vectors used in incidents through Accellion File Transfer Appliance and Accellion File Transfer Appliance (FTA).
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach TRI913072725
Data Compromised: Financial account details, Other types of information
Incident : Data Breach TRI023090625
Data Compromised: Protected health information (phi)
Systems Affected: Accellion File Transfer Appliance
Incident : Data Breach TRI1002810112025
Financial Loss: $450,000 (settlement fund)
Data Compromised: Names, Addresses, Emails, Dates of birth, Health care providers, Dates and types of health care services, Medical record numbers, Immunization types, Lab results, Medications, Payments, payer names, and claims information, Social security numbers, Credit card information
Systems Affected: Accellion File Transfer Appliance (FTA)
Customer Complaints: Class action lawsuit filed by affected individuals
Brand Reputation Impact: Negative (class action settlement and public disclosure)
Legal Liabilities: $450,000 settlement (including attorneys' fees, administration costs, and class member payments)
Identity Theft Risk: High (SSNs, credit card info, and medical data exposed)
Payment Information Risk: High (credit card information and payment details compromised)
What is the average financial loss per incident ?
Average Financial Loss: The average financial loss per incident is $150.00 thousand.
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Financial Account Details, Other Types Of Information, , Protected Health Information (PHI), Personally Identifiable Information (Pii), Protected Health Information (Phi), Payment Information and .
Which entities were affected by each incident ?
Incident : Data Breach TRI913072725
Entity Name: Trinity Health
Entity Type: Healthcare
Industry: Healthcare
Customers Affected: 6288
Incident : Data Breach TRI023090625
Entity Name: Trinity Health
Entity Type: Healthcare Provider
Industry: Healthcare
Location: United States (Primarily California)
Customers Affected: Unknown
Incident : Data Breach TRI1002810112025
Entity Name: Trinity Health Corp.
Entity Type: Healthcare Provider
Industry: Healthcare
Location: United States (California residents primarily affected)
Customers Affected: 18,153 (California residents)
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Data Breach TRI1002810112025
Communication Strategy: Direct mail notices to affected California residents
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach TRI913072725
Type of Data Compromised: Financial account details, Other types of information
Number of Records Exposed: 6288
Incident : Data Breach TRI023090625
Type of Data Compromised: Protected Health Information (PHI)
Number of Records Exposed: Unknown
Sensitivity of Data: High (Health Data)
Incident : Data Breach TRI1002810112025
Type of Data Compromised: Personally identifiable information (pii), Protected health information (phi), Payment information
Number of Records Exposed: 18,153 (California residents)
Sensitivity of Data: High (includes SSNs, medical records, and credit card info)
Data Exfiltration: Yes (files accessed by unauthorized party)
Personally Identifiable Information: NamesAddressesEmailsDates of birthSocial Security numbersMedical record numbersCredit card information
Ransomware Information
Was ransomware involved in any of the incidents ?
Incident : Data Breach TRI1002810112025
Data Exfiltration: Yes (via Accellion FTA exploitation)
Regulatory Compliance
Were there any regulatory violations and fines imposed for each incident ?
Incident : Data Breach TRI023090625
Regulations Violated: Potential HIPAA (Health Insurance Portability and Accountability Act),
Regulatory Notifications: California Office of the Attorney General
Incident : Data Breach TRI1002810112025
Legal Actions: Class action lawsuit settled for $450,000
How does the company ensure compliance with regulatory requirements ?
Ensuring Regulatory Compliance: The company ensures compliance with regulatory requirements through Class action lawsuit settled for $450,000.
References
Where can I find more information about each incident ?
Incident : Data Breach TRI913072725
Source: Maine Office of the Attorney General
Date Accessed: 2020-10-23
Incident : Data Breach TRI023090625
Source: California Office of the Attorney General
Date Accessed: 2021-04-05
Incident : Data Breach TRI1002810112025
Source: Class Action Settlement Notice (Jane Doe v. Trinity Health Corp.)
Incident : Data Breach TRI1002810112025
Source: Kroll Settlement Administration LLC
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Maine Office of the Attorney GeneralDate Accessed: 2020-10-23, and Source: California Office of the Attorney GeneralDate Accessed: 2021-04-05, and Source: Class Action Settlement Notice (Jane Doe v. Trinity Health Corp.), and Source: Kroll Settlement Administration LLC.
Investigation Status
What is the current status of the investigation for each incident ?
Incident : Data Breach TRI1002810112025
Investigation Status: Settled (class action lawsuit resolved)
How does the company communicate the status of incident investigations to stakeholders ?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through Direct mail notices to affected California residents.
Stakeholder and Customer Advisories
Were there any advisories issued to stakeholders or customers for each incident ?
Incident : Data Breach TRI1002810112025
Stakeholder Advisories: Direct mail notices to affected individuals
Customer Advisories: Claim filing instructions provided via mail and online (deadline: Jan. 19, 2026)
What advisories does the company provide to stakeholders and customers following an incident ?
Advisories Provided: The company provides the following advisories to stakeholders and customers following an incident: were Direct mail notices to affected individuals, Claim filing instructions provided via mail and online (deadline: Jan. 19 and 2026).
Initial Access Broker
How did the initial access broker gain entry for each incident ?
Incident : Data Breach TRI023090625
Entry Point: Accellion File Transfer Appliance
Incident : Data Breach TRI1002810112025
Entry Point: Accellion File Transfer Appliance (FTA)
High Value Targets: Patient Data, Payment Information,
Data Sold on Dark Web: Patient Data, Payment Information,
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident ?
Incident : Data Breach TRI023090625
Root Causes: Vulnerability in Accellion FTA leading to unauthorized access
Incident : Data Breach TRI1002810112025
Root Causes: Failure to adequately safeguard Accellion FTA (vulnerability exploitation)
Additional Questions
General Information
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident was an Unauthorized party (unknown specific actor).
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2020-10-23.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2021-04-05.
Impact of the Incidents
What was the highest financial loss from an incident ?
Highest Financial Loss: The highest financial loss from an incident was $450,000 (settlement fund).
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were financial account details, other types of information, , Protected Health Information (PHI), , Names, Addresses, Emails, Dates of birth, Health care providers, Dates and types of health care services, Medical record numbers, Immunization types, Lab results, Medications, Payments, payer names, and claims information, Social Security numbers, Credit card information and .
What was the most significant system affected in an incident ?
Most Significant System Affected: The most significant system affected in an incident was Accellion File Transfer Appliance and Accellion File Transfer Appliance (FTA).
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Addresses, Protected Health Information (PHI), Medications, Social Security numbers, Names, Immunization types, Lab results, financial account details, Dates of birth, Health care providers, Dates and types of health care services, Emails, Credit card information, Payments, payer names, and claims information, Medical record numbers and other types of information.
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 18.8K.
Regulatory Compliance
What was the most significant legal action taken for a regulatory violation ?
Most Significant Legal Action: The most significant legal action taken for a regulatory violation was Class action lawsuit settled for $450,000.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident are Maine Office of the Attorney General, California Office of the Attorney General, Kroll Settlement Administration LLC and Class Action Settlement Notice (Jane Doe v. Trinity Health Corp.).
Investigation Status
What is the current status of the most recent investigation ?
Current Status of Most Recent Investigation: The current status of the most recent investigation is Settled (class action lawsuit resolved).
Stakeholder and Customer Advisories
What was the most recent stakeholder advisory issued ?
Most Recent Stakeholder Advisory: The most recent stakeholder advisory issued was Direct mail notices to affected individuals, .
What was the most recent customer advisory issued ?
Most Recent Customer Advisory: The most recent customer advisory issued were an Claim filing instructions provided via mail and online (deadline: Jan. 19 and 2026).
Initial Access Broker
What was the most recent entry point used by an initial access broker ?
Most Recent Entry Point: The most recent entry point used by an initial access broker were an Accellion File Transfer Appliance and Accellion File Transfer Appliance (FTA).
Post-Incident Analysis
What was the most significant root cause identified in post-incident analysis ?
Most Significant Root Cause: The most significant root cause identified in post-incident analysis was Vulnerability in Accellion FTA leading to unauthorized access, Failure to adequately safeguard Accellion FTA (vulnerability exploitation).
.png)
Latest Global CVEs (Not Company-Specific)
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/angular/angular/commit/0276479e7d0e280e0f8d26fa567d3b7aa97a516f
- https://github.com/angular/angular/commit/05fe6686a97fa0bcd3cf157805b3612033f975bc
- https://github.com/angular/angular/commit/3240d856d942727372a705252f7c8c115394a41e
- https://github.com/angular/angular/releases/tag/19.2.16
- https://github.com/angular/angular/releases/tag/20.3.14
- https://github.com/angular/angular/releases/tag/21.0.1
- https://github.com/angular/angular/security/advisories/GHSA-58c5-g7wp-6w37
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=trinityhealth' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
