Comparison Overview

SpaRoom

VS

Aetna, a CVS Health Company

SpaRoom

5060 Taylor Rd, Cleveland, OH, 44128, US
Last Update: 2025-03-07 (UTC)
Between 900 and 1000
http://www.sparoom.com

Excellent

SpaRoom is a Nations Leader in the Aromatherapy Wellness industry. With products spanning across Essential Oils, Diffusers, Home Fragrance, Bath, Body, Cosmetics & Much more! SpaRoom offers the perfect combination of fragrance, style and healthy living. Our customers enjoy a better sensory experience anytime, anywhere with our diffusers, essential oils, apothecary bottles and accessories. Now among a family of diverse models, features, styles and designs, the SpaRoom lineup of products is associated with most leading retailers and wellness institutes nationwide, including Target; CVS, Publix, Walmart, TJX, Whole Foods & many more!

NAICS: 713
NAICS Definition:
Employees: 16
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Aetna, a CVS Health Company

151 Farmington Avenue, Hartford, Connecticut, 06156, US
Last Update: 2025-05-06 (UTC)

Strong

Between 800 and 900
http://aetna.com

Here at Aetna, a CVS Healthยฎ company, weโ€™re building a healthier world by making health care easy, affordable and all about you. Because Healthier Happens Togetherโ„ข! Follow our page for company news, industry commentary, jobs and more. Founded in 1853 in Hartford, CT, Aetnaยฎ is one of the nation's leading diversified health care benefits companies, serving an estimated 39 million people with information and resources to help them make better decisions about their health. As a health care leader, we believe that our corporate responsibility starts with helping people live healthier lives. And that means using our resources to make the communities and the world we live in better places. Diversity & Inclusion: Our focus on diversity and inclusion reflects the world around us. Having a diverse group of employees gives us a broader and deeper view of how to serve the people and businesses in our communities. As part of CVS Health, over 70% of our workforce is comprised of women. Join us as we transform the health care system. Our employees are the cornerstone of our mission to help people live healthier lives. Get to know us, why we're passionate about what we do and what makes Aetna a great place to work.

NAICS: 71394
NAICS Definition: Fitness and Recreational Sports Centers
Employees: 39,368
Subsidiaries: 11
12-month incidents
0
Known data breaches
3
Attack type number
2

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/unitrex.jpeg
SpaRoom
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
https://images.rankiteo.com/companyimages/aetna.jpeg
Aetna, a CVS Health Company
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
Compliance Summary
SpaRoom
100%
Compliance Rate
0/4 Standards Verified
Aetna, a CVS Health Company
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Wellness and Fitness Services Industry Average (This Year)

No incidents recorded for SpaRoom in 2025.

Incidents vs Wellness and Fitness Services Industry Average (This Year)

No incidents recorded for Aetna, a CVS Health Company in 2025.

Incident History โ€” SpaRoom (X = Date, Y = Severity)

SpaRoom cyber incidents detection timeline including parent company and subsidiaries

Incident History โ€” Aetna, a CVS Health Company (X = Date, Y = Severity)

Aetna, a CVS Health Company cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/unitrex.jpeg
SpaRoom
Incidents

No Incident

https://images.rankiteo.com/companyimages/aetna.jpeg
Aetna, a CVS Health Company
Incidents

Date Detected: 11/2023
Type:Breach
Attack Vector: Human Error
Blog: Blog

Date Detected: 5/2023
Type:Breach
Blog: Blog

Date Detected: 1/2023
Type:Breach
Attack Vector: Internal System Breach
Blog: Blog

FAQ

SpaRoom company company demonstrates a stronger AI risk posture compared to Aetna, a CVS Health Company company company, reflecting its advanced AI governance and monitoring frameworks.

Aetna, a CVS Health Company company has historically faced a number of disclosed cyber incidents, whereas SpaRoom company has not reported any.

In the current year, Aetna, a CVS Health Company company and SpaRoom company have not reported any cyber incidents.

Neither Aetna, a CVS Health Company company nor SpaRoom company has reported experiencing a ransomware attack publicly.

Aetna, a CVS Health Company company has disclosed at least one data breach, while SpaRoom company has not reported such incidents publicly.

Neither Aetna, a CVS Health Company company nor SpaRoom company has reported experiencing targeted cyberattacks publicly.

Neither SpaRoom company nor Aetna, a CVS Health Company company has reported experiencing or disclosing vulnerabilities publicly.

Aetna, a CVS Health Company company has more subsidiaries worldwide compared to SpaRoom company.

Aetna, a CVS Health Company company employs more people globally than SpaRoom company, reflecting its scale as a Wellness and Fitness Services.

Latest Global CVEs (Not Company-Specific)

Description

A vulnerability has been found in GNU Binutils 2.45. The affected element is the function elf_swap_shdr in the library bfd/elfcode.h of the component Linker. The manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit has been disclosed to the public and may be used. The identifier of the patch is 9ca499644a21ceb3f946d1c179c38a83be084490. To fix this issue, it is recommended to deploy a patch. The code maintainer replied with "[f]ixed for 2.46".

Published
Date
2025-09-27
Updated
Date
2025-09-27
Risk Information
cvss2
Base: 4.3
Severity: LOW
AV:L/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 4.8
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A flaw has been found in GNU Binutils 2.45. Impacted is the function _bfd_elf_parse_eh_frame of the file bfd/elf-eh-frame.c of the component Linker. Executing manipulation can lead to heap-based buffer overflow. The attack is restricted to local execution. The exploit has been published and may be used. This patch is called ea1a0737c7692737a644af0486b71e4a392cbca8. A patch should be applied to remediate this issue. The code maintainer replied with "[f]ixed for 2.46".

Published
Date
2025-09-27
Updated
Date
2025-09-27
Risk Information
cvss2
Base: 4.3
Severity: LOW
AV:L/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 4.8
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was detected in GNU Binutils 2.45. This issue affects the function dump_dwarf_section of the file binutils/objdump.c. Performing manipulation results in out-of-bounds read. The attack is only possible with local access. The exploit is now public and may be used. The patch is named f87a66db645caf8cc0e6fc87b0c28c78a38af59b. It is suggested to install a patch to address this issue.

Published
Date
2025-09-27
Updated
Date
2025-09-27
Risk Information
cvss2
Base: 1.7
Severity: LOW
AV:L/AC:L/Au:S/C:N/I:N/A:P
cvss3
Base: 3.3
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
cvss4
Base: 4.8
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A security vulnerability has been detected in zhuimengshaonian wisdom-education up to 1.0.4. This vulnerability affects the function selectStudentExamInfoList of the file src/main/java/com/education/api/controller/student/ExamInfoController.java. Such manipulation of the argument subjectId leads to improper authorization. It is possible to launch the attack remotely. The exploit has been disclosed publicly and may be used.

Published
Date
2025-09-27
Updated
Date
2025-09-27
Risk Information
cvss2
Base: 4.0
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:N/A:N
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A security flaw has been discovered in Campcodes Farm Management System 1.0. Affected by this issue is some unknown functionality. The manipulation results in file and directory information exposure. The attack may be performed from remote. The exploit has been released to the public and may be exploited.

Published
Date
2025-09-27
Updated
Date
2025-09-27
Risk Information
cvss2
Base: 5.0
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:N/A:N
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
cvss4
Base: 5.5
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References