Comparison Overview

Ute Water Conservancy District

VS

Enedis

Ute Water Conservancy District

2190 H 1/4 Road, Grand Junction, Colorado, 81505, US
Last Update: 2025-03-05 (UTC)
Between 800 and 900
http://www.utewater.org

Strong

Ute Water Conservancy District was established on April 4, 1956, by a decree of the Mesa County Court system. The purpose of the District's inception was to supply domestic water service to the rural areas of the Grand Valley under the "Water Conservancy Act"​ of Colorado. The service boundaries encompass approximately 260 square miles within Mesa County, starting in Cameo, Colorado and ending near the Colorado-Utah Stateline. The service area includes the areas in and around the City of Grand Junction, Town of Fruita, Town of Palisade, and the unincorporated Towns of Clifton, Loma, and Mack. The District supplies domestic water through nearly 900 miles of distribution lines to over 85,000 consumers, making it the largest domestic water provider between Denver, Colorado and Salt Lake City, Utah. Our Mission: To secure and provide the highest quality water to meet the current and future needs of our customers at the lowest reasonable cost.

NAICS: 22
NAICS Definition: Utilities
Employees: 42
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Enedis

Last Update: 2024-08-12 (UTC)

Strong

Between 800 and 900
https://www.enedis.fr/

Enedis est le gestionnaire du réseau public de distribution d’électricité sur 95 % du territoire français continental. Ses 38 859 collaborateurs assurent chaque jour l’exploitation, l’entretien et le développement de près de 1,3 million de kilomètres de réseau. Raccordement, mise en service, dépannage, changement de fournisseur... Autant d’opérations assurées quotidiennement par Enedis. En tant que gestionnaire du réseau public de distribution d’électricité, Enedis réalise chaque année de nombreuses interventions : plus de 11 millions en 2014. La nature des prestations diffère selon les clients : clients finaux, fournisseurs ou producteurs d’électricité.

NAICS: 22
NAICS Definition: Utilities
Employees: 21,476
Subsidiaries: 35
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/ute-water-conservancy-district.jpeg
Ute Water Conservancy District
ISO 27001
Not verified
SOC 2
Not verified
GDPR
No public badge
PCI DSS
No public badge
https://images.rankiteo.com/companyimages/enedis.jpeg
Enedis
ISO 27001
Not verified
SOC 2
Not verified
GDPR
No public badge
PCI DSS
No public badge
Compliance Summary
Ute Water Conservancy District
100%
Compliance Rate
0/4 Standards Verified
Enedis
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Utilities Industry Average (This Year)

No incidents recorded for Ute Water Conservancy District in 2025.

Incidents vs Utilities Industry Average (This Year)

No incidents recorded for Enedis in 2025.

Incident History — Ute Water Conservancy District (X = Date, Y = Severity)

Ute Water Conservancy District cyber incidents detection timeline including parent company and subsidiaries

Incident History — Enedis (X = Date, Y = Severity)

Enedis cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/ute-water-conservancy-district.jpeg
Ute Water Conservancy District
Incidents

No Incident

https://images.rankiteo.com/companyimages/enedis.jpeg
Enedis
Incidents

No Incident

FAQ

Both Ute Water Conservancy District company and Enedis company demonstrate a comparable AI risk posture, with strong governance and monitoring frameworks in place.

Historically, Enedis company has disclosed a higher number of cyber incidents compared to Ute Water Conservancy District company.

In the current year, Enedis company and Ute Water Conservancy District company have not reported any cyber incidents.

Neither Enedis company nor Ute Water Conservancy District company has reported experiencing a ransomware attack publicly.

Neither Enedis company nor Ute Water Conservancy District company has reported experiencing a data breach publicly.

Neither Enedis company nor Ute Water Conservancy District company has reported experiencing targeted cyberattacks publicly.

Neither Ute Water Conservancy District company nor Enedis company has reported experiencing or disclosing vulnerabilities publicly.

Enedis company has more subsidiaries worldwide compared to Ute Water Conservancy District company.

Enedis company employs more people globally than Ute Water Conservancy District company, reflecting its scale as a Utilities.

Latest Global CVEs (Not Company-Specific)

Description

A vulnerability was determined in Tomofun Furbo 360 and Furbo Mini. The impacted element is an unknown function of the file /etc/shadow of the component Password Handler. Executing manipulation can lead to use of weak hash. The physical device can be targeted for the attack. The attack requires a high level of complexity. The exploitability is regarded as difficult. The exploit has been publicly disclosed and may be utilized. The firmware versions determined to be affected are Furbo 360 up to FB0035_FW_036 and Furbo Mini up to MC0020_FW_074. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-10-12
Updated
Date
2025-10-12
Risk Information
cvss2
Base: 1.0
Severity: HIGH
AV:L/AC:H/Au:S/C:P/I:N/A:N
cvss3
Base: 1.8
Severity: HIGH
CVSS:3.1/AV:P/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
cvss4
Base: 1.0
Severity: HIGH
CVSS:4.0/AV:P/AC:H/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was found in Tomofun Furbo 360 and Furbo Mini. The affected element is an unknown function of the component Root Account Handler. Performing manipulation results in use of hard-coded password. The attack must be initiated from a local position. The attack is considered to have high complexity. The exploitability is described as difficult. The exploit has been made public and could be used. The firmware versions determined to be affected are Furbo 360 up to FB0035_FW_036 and Furbo Mini up to MC0020_FW_074. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-10-12
Updated
Date
2025-10-12
Risk Information
cvss2
Base: 6.0
Severity: HIGH
AV:L/AC:H/Au:S/C:C/I:C/A:C
cvss3
Base: 7.0
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
cvss4
Base: 7.3
Severity: HIGH
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability has been found in Tomofun Furbo 360 and Furbo Mini. Impacted is an unknown function of the file TF_FQDN.json of the component GATT Interface URL Handler. Such manipulation leads to server-side request forgery. The attack may be performed from remote. Attacks of this nature are highly complex. The exploitability is considered difficult. The exploit has been disclosed to the public and may be used. The firmware versions determined to be affected are Furbo 360 up to FB0035_FW_036 and Furbo Mini up to MC0020_FW_074. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-10-12
Updated
Date
2025-10-12
Risk Information
cvss2
Base: 5.1
Severity: HIGH
AV:N/AC:H/Au:N/C:P/I:P/A:P
cvss3
Base: 5.6
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.3
Severity: HIGH
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A flaw has been found in Tomofun Furbo 360 and Furbo Mini. This issue affects some unknown processing of the component GATT Service. This manipulation of the argument DeviceToken causes information disclosure. The attack is only possible within the local network. A high degree of complexity is needed for the attack. The exploitability is assessed as difficult. The exploit has been published and may be used. The firmware versions determined to be affected are Furbo 360 up to FB0035_FW_036 and Furbo Mini up to MC0020_FW_074. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-10-12
Updated
Date
2025-10-12
Risk Information
cvss2
Base: 1.8
Severity: HIGH
AV:A/AC:H/Au:N/C:P/I:N/A:N
cvss3
Base: 3.1
Severity: HIGH
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
cvss4
Base: 2.3
Severity: HIGH
CVSS:4.0/AV:A/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was detected in Tomofun Furbo 360 and Furbo Mini. This vulnerability affects unknown code of the component GATT Service. The manipulation results in improper access controls. The attack can only be performed from the local network. The exploit is now public and may be used. The firmware versions determined to be affected are Furbo 360 up to FB0035_FW_036 and Furbo Mini up to MC0020_FW_074. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-10-12
Updated
Date
2025-10-12
Risk Information
cvss2
Base: 5.8
Severity: LOW
AV:A/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References