UOCX
Company Details
Linkedin ID:
uocx
Website:
Employees number:
1
Number of followers:
1,113
NAICS:
None
Industry Type:
Homepage:
uoc.edu
IP Addresses:
0
Company ID:
UOC_1621857
Scan Status:
In-progress
UOCX Company CyberSecurity Posture
uoc.edu
UOC X - Xtended Studies neix per la voluntat de la UOC de formar persones al llarg de la vida, amb una diversitat d'oferta i de metodologies per adaptar-se a totes les necessitats, les disponibilitats de temps i la diversitat de capacitats. La UOC vol continuar sent, tal com va anar la seva missió original, la universitat que acompanya a les persones al llarg de la vida, i desitja seguir fent-ho de manera inclusiva. Però la societat ja no és la mateixa de fa 20 anys. Vivim en un món global amb reptes complexos, i en el qual es necessiten ciutadans i ciutadanes i professionals amb competències globals i socialment sensibles. Per tot això, i perquè sabem que les persones aprenem al llarg de la vida i al llarg de la vida tenim moltes possibilitats d'aprendre, i que som capaces de fer-ho de moltes maneres, des de la UOC volem obrir-nos més enllà de la formació universitària. ______________________________________________________ UOC X - Xtended Studies nace por la voluntad de la UOC de formar personas a lo largo de la vida, conuna diversidad de oferta y de metodologías para adaptarnos a todas las necesidades, las disponibilidades de tiempo y la diversidad de capacidades. La UOC quiere continuar siendo, tal como fue su misión original, la universidad que acompaña a las personas a lo largo de la vida, y desea seguir haciéndolo de manera inclusiva. Pero la sociedad ya no es la misma de hace 20 años. Vivimos en un mundo global con retos complejos, y en el que se necesitan ciudadanos y ciudadanas y profesionales con competencias globales y socialmente sensibles. Por todo esto, y porque sabemos que las personas aprendemos a lo largo de la vida y a lo largo de la vida tenemos muchas posibilidades de aprender, y que somos capaces de hacerlo de muchas maneras, desde la UOC queremos abrirnos más allá de la formación universitaria.
UOCX A.I CyberSecurity Scoring
UOCX Risk Score (AI oriented)Between 750 and 799
UOCX
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
UOCX Global Score (TPRM)XXXX
UOCX
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
UOCX Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Universitat Oberta de Catalunya
Ransomware
Rankiteo Explanation
Attack threatening the organization's existence
Description: The Universitat Oberta de Catalunya (Open University of Catalonia, UOC suffered a ransomware-type cyberattack that infected the institution's central servers. The attack affected the access to its virtual campus but not personal data. However, the incident was resolved after the analysis and tests were carried out, and was also reported to the Agència de Ciberseguretat de Catalunya (Catalan Cybersecurity Agency).
UOCX Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for UOCX
Incidents vs E-learning Industry Average (This Year)
No incidents recorded for UOCX in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for UOCX in 2025.
Incident Types UOCX vs E-learning Industry Avg (This Year)
No incidents recorded for UOCX in 2025.
Incident History — UOCX (X = Date, Y = Severity)
UOCX cyber incidents detection timeline including parent company and subsidiaries
UOCX Company Subsidiaries
UOC X - Xtended Studies neix per la voluntat de la UOC de formar persones al llarg de la vida, amb una diversitat d'oferta i de metodologies per adaptar-se a totes les necessitats, les disponibilitats de temps i la diversitat de capacitats. La UOC vol continuar sent, tal com va anar la seva missió original, la universitat que acompanya a les persones al llarg de la vida, i desitja seguir fent-ho de manera inclusiva. Però la societat ja no és la mateixa de fa 20 anys. Vivim en un món global amb reptes complexos, i en el qual es necessiten ciutadans i ciutadanes i professionals amb competències globals i socialment sensibles. Per tot això, i perquè sabem que les persones aprenem al llarg de la vida i al llarg de la vida tenim moltes possibilitats d'aprendre, i que som capaces de fer-ho de moltes maneres, des de la UOC volem obrir-nos més enllà de la formació universitària. ______________________________________________________ UOC X - Xtended Studies nace por la voluntad de la UOC de formar personas a lo largo de la vida, conuna diversidad de oferta y de metodologías para adaptarnos a todas las necesidades, las disponibilidades de tiempo y la diversidad de capacidades. La UOC quiere continuar siendo, tal como fue su misión original, la universidad que acompaña a las personas a lo largo de la vida, y desea seguir haciéndolo de manera inclusiva. Pero la sociedad ya no es la misma de hace 20 años. Vivimos en un mundo global con retos complejos, y en el que se necesitan ciudadanos y ciudadanas y profesionales con competencias globales y socialmente sensibles. Por todo esto, y porque sabemos que las personas aprendemos a lo largo de la vida y a lo largo de la vida tenemos muchas posibilidades de aprender, y que somos capaces de hacerlo de muchas maneras, desde la UOC queremos abrirnos más allá de la formación universitaria.
Loading...
UOCX Similar Companies
Nessy Learning
A multi-award winning educational software program for children with dyslexia. Nessy Learning can help children up to the age of 12 learn to read, spell and improve their numeracy skills through fun, multisensory games, videos and worksheets. Nessy now also provides support for teachers, learning
Passport2Fluency
Passport2Fluency provides opportunities to increase language fluency through a virtual program. Participants learn Spanish by interacting with native coaches from Latin America; which allows them not only to learn the language but also to experience other cultures. Our curriculum designed to achieve
Zigurat Innovation & Technology Business School
Zigurat is a Global Business School focused on Innovation and Technology. We offer a range of programs, including masters, corporate training and events, tailored to professionals and businesses needs. Zigurat’s programs are dynamic and based on the experience and knowledge share of a faculty board
Nepris and Virtual Job Shadow have merged to create Pathful, the Career Readiness Company. With industry professionals from 5,000+ companies shaping our career experiences, Pathful delivers a best-in-class solution for career awareness, exploration, and preparation. Empower learners on their career
LOI
De LOI maakt hét verschil in opleiden door kwalitatief hoogwaardig onderwijs toegankelijk te maken voor iedereen. Dat doen we door ieders persoonlijke situatie en behoeften centraal te stellen. En door te blijven ontwikkelen en vernieuwen, wat ons in staat stelt de kwaliteit van onze opleidingen te
StudyMode
StudyMode is a platform for students to create, discover, and share study materials. At StudyMode, we believe that education should evolve as the world evolves, so we are committed to developing cutting edge ed-tech tools to help students change the concept of studying from a chore to a life-changin
.png)
UOCX CyberSecurity News
April 01, 2025 07:00 AM
International Conference on Advanced Information Networking and Application
The UOC will host AINA-2025, welcoming international researchers in communication networks and protocols, AI and data science, digital security and distributed...
November 29, 2024 08:00 AM
Boosting the security of the Internet of Things
Researchers from the UOC and IP Paris has designed an innovative system to guarantee the integrity, source and security of data coming from...
June 27, 2024 07:00 AM
Digital watermarking to protect medical documents
A team of researchers at the UOC is working to develop reliable and accessible tools to detect dishonest manipulations
May 22, 2024 07:00 AM
Claroty’s Team82 exposes critical vulnerabilities in Honeywell’s ControlEdge UOC's EpicMo protocol
Claroty's Team82 exposes critical vulnerabilities in Honeywell's ControlEdge UOC's EpicMo protocol.
May 21, 2024 07:00 AM
Multiple Vulnerabilities in Honeywell VirtualUOC Let Attackers Execute Remote Code
Vulnerabilities in Honeywell's ControlEdge Virtual Unit Operations Center (UOC), These vulnerabilities within the EpicMo protocol...
March 21, 2024 07:00 AM
New project to protect the internet from fake content and reduce cyberattacks
A collaboration between the UAB and the UOC has launched the DANGER project in order to increase the security and reliability of networks.
February 19, 2024 08:00 AM
UOC part of new Cybersecurity Chair to encourage more women to enter the field
It's important to add their perspective and take their criteria and needs in the field of cybersecurity into account." The Chair will carry out...
January 17, 2024 10:22 AM
What lurks in the Deep Web?
The Deep Web is known as the part of the World Wide Web where there is most information and where users can browse anonymously. Jordi Serra, the UOC's...
March 08, 2023 08:00 AM
Websites track users in breach of privacy
In addition to cookies, there are other widely used web-tracking techniques that are not well known to the public, such as web beacons The...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
UOCX CyberSecurity History Information
Official Website of UOCX
The official website of UOCX is http://x.uoc.edu.
UOCX’s AI-Generated Cybersecurity Score
According to Rankiteo, UOCX’s AI-generated cybersecurity score is 751, reflecting their Fair security posture.
How many security badges does UOCX’ have ?
According to Rankiteo, UOCX currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does UOCX have SOC 2 Type 1 certification ?
According to Rankiteo, UOCX is not certified under SOC 2 Type 1.
Does UOCX have SOC 2 Type 2 certification ?
According to Rankiteo, UOCX does not hold a SOC 2 Type 2 certification.
Does UOCX comply with GDPR ?
According to Rankiteo, UOCX is not listed as GDPR compliant.
Does UOCX have PCI DSS certification ?
According to Rankiteo, UOCX does not currently maintain PCI DSS compliance.
Does UOCX comply with HIPAA ?
According to Rankiteo, UOCX is not compliant with HIPAA regulations.
Does UOCX have ISO 27001 certification ?
According to Rankiteo,UOCX is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of UOCX
UOCX operates primarily in the E-learning industry.
Number of Employees at UOCX
UOCX employs approximately 1 people worldwide.
Subsidiaries Owned by UOCX
UOCX presently has no subsidiaries across any sectors.
UOCX’s LinkedIn Followers
UOCX’s official LinkedIn profile has approximately 1,113 followers.
NAICS Classification of UOCX
UOCX is classified under the NAICS code None, which corresponds to Others.
UOCX’s Presence on Crunchbase
No, UOCX does not have a profile on Crunchbase.
UOCX’s Presence on LinkedIn
Yes, UOCX maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/uocx.
Cybersecurity Incidents Involving UOCX
As of December 06, 2025, Rankiteo reports that UOCX has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
UOCX has an estimated 699 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at UOCX ?
Incident Types: The types of cybersecurity incidents that have occurred include Ransomware.
Incident Details
Can you provide details on each incident ?
Title: Ransomware Attack on Universitat Oberta de Catalunya
Description: The Universitat Oberta de Catalunya (Open University of Catalonia, UOC) suffered a ransomware-type cyberattack that infected the institution's central servers. The attack affected the access to its virtual campus but not personal data. The incident was resolved after the analysis and tests were carried out, and was also reported to the Agència de Ciberseguretat de Catalunya (Catalan Cybersecurity Agency).
Type: Ransomware
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Ransomware.
Impact of the Incidents
What was the impact of each incident ?
Incident : Ransomware UNI2258161122
Systems Affected: Central serversVirtual campus
Which entities were affected by each incident ?
Incident : Ransomware UNI2258161122
Entity Name: Universitat Oberta de Catalunya
Entity Type: Educational Institution
Industry: Education
Location: Catalonia
Regulatory Compliance
Were there any regulatory violations and fines imposed for each incident ?
Incident : Ransomware UNI2258161122
Regulatory Notifications: Agència de Ciberseguretat de Catalunya
Additional Questions
Impact of the Incidents
What was the most significant system affected in an incident ?
Most Significant System Affected: The most significant system affected in an incident was Central serversVirtual campus.
.png)
Latest Global CVEs (Not Company-Specific)
Description
HedgeDoc is an open source, real-time, collaborative, markdown notes application. Prior to 1.10.4, some of HedgeDoc's OAuth2 endpoints for social login providers such as Google, GitHub, GitLab, Facebook or Dropbox lack CSRF protection, since they don't send a state parameter and verify the response using this parameter. This vulnerability is fixed in 1.10.4.
Risk Information
cvss3
Base: 3.7
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N
Description
Langflow versions up to and including 1.6.9 contain a chained vulnerability that enables account takeover and remote code execution. An overly permissive CORS configuration (allow_origins='*' with allow_credentials=True) combined with a refresh token cookie configured as SameSite=None allows a malicious webpage to perform cross-origin requests that include credentials and successfully call the refresh endpoint. An attacker-controlled origin can therefore obtain fresh access_token / refresh_token pairs for a victim session. Obtained tokens permit access to authenticated endpoints — including built-in code-execution functionality — allowing the attacker to execute arbitrary code and achieve full system compromise.
Risk Information
cvss4
Base: 9.4
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A vulnerability was detected in xerrors Yuxi-Know up to 0.4.0. This vulnerability affects the function OtherEmbedding.aencode of the file /src/models/embed.py. Performing manipulation of the argument health_url results in server-side request forgery. The attack can be initiated remotely. The exploit is now public and may be used. The patch is named 0ff771dc1933d5a6b78f804115e78a7d8625c3f3. To fix this issue, it is recommended to deploy a patch. The vendor responded with a vulnerability confirmation and a list of security measures they have established already (e.g. disabled URL parsing, disabled URL upload mode, removed URL-to-markdown conversion).
Risk Information
cvss2
Base: 5.8
Severity: LOW
AV:N/AC:L/Au:M/C:P/I:P/A:P
cvss3
Base: 4.7
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.1
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A security vulnerability has been detected in Rarlab RAR App up to 7.11 Build 127 on Android. This affects an unknown part of the component com.rarlab.rar. Such manipulation leads to path traversal. It is possible to launch the attack remotely. Attacks of this nature are highly complex. It is indicated that the exploitability is difficult. The exploit has been disclosed publicly and may be used. Upgrading to version 7.20 build 128 is able to mitigate this issue. You should upgrade the affected component. The vendor responded very professional: "This is the real vulnerability affecting RAR for Android only. WinRAR and Unix RAR versions are not affected. We already fixed it in RAR for Android 7.20 build 128 and we publicly mentioned it in that version changelog. (...) To avoid confusion among users, it would be useful if such disclosure emphasizes that it is RAR for Android only issue and WinRAR isn't affected."
Risk Information
cvss2
Base: 5.1
Severity: HIGH
AV:N/AC:H/Au:N/C:P/I:P/A:P
cvss3
Base: 5.0
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L
cvss4
Base: 2.3
Severity: HIGH
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A weakness has been identified in ZSPACE Q2C NAS up to 1.1.0210050. Affected by this issue is the function zfilev2_api.OpenSafe of the file /v2/file/safe/open of the component HTTP POST Request Handler. This manipulation of the argument safe_dir causes command injection. It is possible to initiate the attack remotely. The exploit has been made available to the public and could be exploited. The vendor was contacted early about this disclosure but did not respond in any way.
Risk Information
cvss2
Base: 9.0
Severity: LOW
AV:N/AC:L/Au:S/C:C/I:C/A:C
cvss3
Base: 8.8
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
cvss4
Base: 7.4
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=uocx' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
