Comparison Overview
UPMC Supplier Opportunity & Inclusion

UPMC Supplier Opportunity & Inclusion
600 Grant St, US Steel Tower, Floor 59, Pittsburgh, Pennsylvania, US, 15219
Last Update: 16/03/2026
UPMC’s Supplier Opportunity and Inclusion Program, which began in 1989, and re-engineered in 2006, is designed to provide certified minority, woman-owned, LGTBE, Veteran, small, small disadvantaged, and HUBZone owned vendors equal access to procurement opportunities. Th...

UPMC
US Steel Tower, 600 Grant Street, Pittsburgh, PA, US, 15219
Last Update: 01/04/2026
UPMC is a world-renowned, nonprofit health care provider and insurer committed to delivering exceptional, people-centered care and community services. Headquartered in Pittsburgh and affiliated with the University of Pittsburgh Schools of the Health Sciences, UPMC is sh...
Compliance Ranges Comparison

UPMC Supplier Opportunity & Inclusion







UPMC






Benchmark & Cyber Underwriting Signals
Incidents vs Hospitals and Health Care Industry Avg (This Year)
No incidents recorded for UPMC Supplier Opportunity & Inclusion in 2026.
Incidents vs Hospitals and Health Care Industry Avg (This Year)
UPMC has 5.66% fewer incidents than the average of all companies with at least one recorded incident.
Incident History - UPMC Supplier Opportunity & Inclusion (X = Date, Y = Severity)
UPMC Supplier Opportunity & Inclusion cyber incidents detection timeline including parent company and subsidiaries.
Incident History - UPMC (X = Date, Y = Severity)
UPMC cyber incidents detection timeline including parent company and subsidiaries.
Notable Incidents

UPMC Supplier Opportunity & Inclusion

UPMC
FAQ
Latest Global CVEs
Server-side request forgery (ssrf) in Microsoft Entra Provisioning Service (SyncFabric) allows an authorized attacker to elevate privileges over a network.
Incorrect authorization in Microsoft Exchange Online allows an authorized attacker to elevate privileges over a network.
Server-side request forgery (ssrf) in Azure OpenAI allows an authorized attacker to elevate privileges over a network.
Url redirection to untrusted site ('open redirect') in M365 Copilot allows an unauthorized attacker to elevate privileges over a network.
Improper access control in Azure Synapse allows an authorized attacker to elevate privileges over a network.