Comparison Overview

Q: Between UiPath company and Bosch USA company, which one has the best AI Cybersecurity Score ?

Bosch USA company demonstrates a stronger AI Cybersecurity Score compared to UiPath company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Q: Between UiPath company and Bosch USA company, which one has experienced more cyber incidents in the past ?

Bosch USA company has historically faced a number of disclosed cyber incidents, whereas UiPath company has not reported any.

Q: Between UiPath company and Bosch USA company, which one has experienced more cyber incidents this year ?

In the current year, Bosch USA company and UiPath company have not reported any cyber incidents.

Q: Between UiPath company and Bosch USA company, which one has experienced at least one ransomware attack ?

Neither Bosch USA company nor UiPath company has reported experiencing a ransomware attack publicly.

Q: Between UiPath company and Bosch USA company, which one has experienced at least one data breach ?

Neither Bosch USA company nor UiPath company has reported experiencing a data breach publicly.

Q: Between UiPath company and Bosch USA company, which one has experienced at least one targeted cyberattack ?

Neither Bosch USA company nor UiPath company has reported experiencing targeted cyberattacks publicly.

Q: Between UiPath company and Bosch USA company, which one has experienced at least one vulnerability ?

Bosch USA company has disclosed at least one vulnerability, while UiPath company has not reported such incidents publicly.

Q: Between UiPath company and Bosch USA company, which one holds the most compliance certifications ?

Neither UiPath nor Bosch USA holds any compliance certifications.

Q: Between UiPath company and Bosch USA company, which one has the most subsidiaries ?

Bosch USA company has more subsidiaries worldwide compared to UiPath company.

UiPath

One Vanderbilt Avenue, New York, NY, 10017, US

Last Update: 2025-11-21

View Profile

Between 750 and 799

http://www.uipath.com

UiPath develops AI technology that mirrors human intelligence with ever-increasing sophistication, transforming how businesses operate, innovate, and compete. The UiPath Platform™ accelerates the shift toward a new era of agentic automation—one where agents, robots, people, and models integrate seamlessly to drive autonomy and smarter decision-making. With a focus on security, accuracy, and resiliency, UiPath is committed to shaping a world where AI enhances human potential and revolutionizes industries.

NAICS: 5112

NAICS Definition: Software Publishers

Employees: 4,797

Subsidiaries: 1

12-month incidents

0

Known data breaches

0

Attack type number

0

View Profile

Bosch USA

38000 Hills Tech Dr., Farmington Hills, MI, US, 48331

Last Update: 2025-11-27

Between 750 and 799

http://www.bosch.us

The Bosch Group’s strategic objective is to create solutions for a connected life. Bosch improves quality of life worldwide with innovative products and services that are "Invented for life" and spark enthusiasm. Podcast: http://bit.ly/beyondbosch Imprint: https://www.bosch.us/corporate-information/ Privacy statement: https://bit.ly/binaprv Terms of use: We strive to provide a friendly space for all social media users. Please note that comments on the BoschUSA page are not necessarily representative of the opinions of BoschUSA, nor do we confirm their accuracy. Therefore, at its discretion, BoschUSA reserves the right to remove any comment that is: - Indecent, obscene, pornographic, threatening, violent, discriminatory, political, religious, racist, abusive, derogatory, misleading, off-topic - Violating the rights of others (especially personal, copyright and performance protection rights) - Any contribution in the form of links, text and/or images that are advertisements of third parties - Actions that adversely affect the proper functioning of BoschUSA channels, as well as documents that contain harmful viruses or Like invites.

NAICS: 5112

NAICS Definition: Software Publishers

Employees: 12,408

Subsidiaries: 69

12-month incidents

0

Known data breaches

0

Attack type number

1

UiPath

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Bosch USA

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Software Development Industry Average (This Year)

No incidents recorded for UiPath in 2025.

Incidents vs Software Development Industry Average (This Year)

No incidents recorded for Bosch USA in 2025.

Incident History — UiPath (X = Date, Y = Severity)

UiPath cyber incidents detection timeline including parent company and subsidiaries

Incident History — Bosch USA (X = Date, Y = Severity)

Bosch USA cyber incidents detection timeline including parent company and subsidiaries

UiPath

Incidents

No Incident

Bosch USA

Incidents

Date Detected: 1/2024

Type:Vulnerability

Attack Vector: Unauthenticated Network Access, Custom Protocol Exploitation (Volkswagen, BMW, etc.), Web Application Vulnerabilities in Management Interface

Motivation: Potential Financial Gain (Ransomware), Industrial Sabotage, Extortion via Product Quality Manipulation

Blog: Blog

Bosch USA company demonstrates a stronger AI Cybersecurity Score compared to UiPath company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Bosch USA company has historically faced a number of disclosed cyber incidents, whereas UiPath company has not reported any.

In the current year, Bosch USA company and UiPath company have not reported any cyber incidents.

Neither Bosch USA company nor UiPath company has reported experiencing a ransomware attack publicly.

Neither Bosch USA company nor UiPath company has reported experiencing a data breach publicly.

Neither Bosch USA company nor UiPath company has reported experiencing targeted cyberattacks publicly.

Bosch USA company has disclosed at least one vulnerability, while UiPath company has not reported such incidents publicly.

Neither UiPath nor Bosch USA holds any compliance certifications.

Neither company holds any compliance certifications.

Bosch USA company has more subsidiaries worldwide compared to UiPath company.

Bosch USA company employs more people globally than UiPath company, reflecting its scale as a Software Development.

Neither UiPath nor Bosch USA holds SOC 2 Type 1 certification.

Neither UiPath nor Bosch USA holds SOC 2 Type 2 certification.

Neither UiPath nor Bosch USA holds ISO 27001 certification.

Neither UiPath nor Bosch USA holds PCI DSS certification.

Neither UiPath nor Bosch USA holds HIPAA certification.

Neither UiPath nor Bosch USA holds GDPR certification.

Description

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.

Published

Date

2025-11-26

Updated

Date

2025-11-26

Risk Information

cvss4

Base: 7.7

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.

Published

Date

2025-11-26

Updated

Date

2025-11-26

Risk Information

cvss4

Base: 8.7

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.

Published

Date

2025-11-26

Updated

Date

2025-11-26

Risk Information

cvss4

Base: 6.3

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.

Published

Date

2025-11-26

Updated

Date

2025-11-26

Risk Information

cvss3

Base: 7.5

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References

Description

Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.

Published

Date

2025-11-26

Updated

Date

2025-11-26

Risk Information

cvss3

Base: 7.5

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

UiPath

VS

Bosch USA

UiPath

Bosch USA

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Software Development Industry Average (This Year)

Incidents vs Software Development Industry Average (This Year)

Incident History — UiPath (X = Date, Y = Severity)

Incident History — Bosch USA (X = Date, Y = Severity)

Notable Incidents

No Incident

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2025-66035

Risk Information

CVE-2025-66031

Risk Information

CVE-2025-66030

Risk Information

CVE-2025-64344

Risk Information

CVE-2025-64335

Risk Information

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

UiPath

VS

Bosch USA

UiPath

Bosch USA

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Software Development Industry Average (This Year)

Incidents vs Software Development Industry Average (This Year)

Incident History — UiPath (X = Date, Y = Severity)

Incident History — Bosch USA (X = Date, Y = Severity)

Notable Incidents

No Incident

🔒 Incident : Vulnerability BOS3343333102725

FAQ

Between UiPath company and Bosch USA company, which one has the best AI Cybersecurity Score ?

Between UiPath company and Bosch USA company, which one has experienced more cyber incidents in the past ?

Between UiPath company and Bosch USA company, which one has experienced more cyber incidents this year ?

Between UiPath company and Bosch USA company, which one has experienced at least one ransomware attack ?

Between UiPath company and Bosch USA company, which one has experienced at least one data breach ?

Between UiPath company and Bosch USA company, which one has experienced at least one targeted cyberattack ?

Between UiPath company and Bosch USA company, which one has experienced at least one vulnerability ?

Between UiPath company and Bosch USA company, which one holds the most compliance certifications ?

Between UiPath company and Bosch USA company, which one holds the fewest compliance certifications ?

Between UiPath company and Bosch USA company, which one has the most subsidiaries ?

Between UiPath company and Bosch USA company, which one has the largest number of employees ?

Between UiPath and Bosch USA, which company holds both SOC 2 Type 1 certifications ?

Between UiPath and Bosch USA, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — UiPath or Bosch USA ?

Which company is PCI DSS compliant — UiPath or Bosch USA ?

Between UiPath and Bosch USA, which company complies with HIPAA regulations for healthcare data ?

Between UiPath and Bosch USA, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2025-66035

Risk Information

CVE-2025-66031

Risk Information

CVE-2025-66030

Risk Information

CVE-2025-64344

Risk Information

CVE-2025-64335

Risk Information