Comparison Overview

Ute Water Conservancy District

VS

Framatome

Ute Water Conservancy District

2190 H 1/4 Road, Grand Junction, Colorado, 81505, US
Last Update: 2025-03-05 (UTC)
Between 800 and 900
http://www.utewater.org

Strong

Ute Water Conservancy District was established on April 4, 1956, by a decree of the Mesa County Court system. The purpose of the District's inception was to supply domestic water service to the rural areas of the Grand Valley under the "Water Conservancy Act"โ€‹ of Colorado. The service boundaries encompass approximately 260 square miles within Mesa County, starting in Cameo, Colorado and ending near the Colorado-Utah Stateline. The service area includes the areas in and around the City of Grand Junction, Town of Fruita, Town of Palisade, and the unincorporated Towns of Clifton, Loma, and Mack. The District supplies domestic water through nearly 900 miles of distribution lines to over 85,000 consumers, making it the largest domestic water provider between Denver, Colorado and Salt Lake City, Utah. Our Mission: To secure and provide the highest quality water to meet the current and future needs of our customers at the lowest reasonable cost.

NAICS: 22
NAICS Definition: Utilities
Employees: 42
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Framatome

1 place Jean Millier, Courbevoie, undefined, 92400, FR
Last Update: 2025-03-04 (UTC)

Strong

Between 800 and 900
https://www.framatome.com

Framatome is an international leader in nuclear energy recognized for its innovative, digital and value added solutions for the global nuclear fleet. With worldwide expertise and a proven track record for reliability and performance, the company designs, services and installs components, fuel, and instrumentation and control systems for nuclear power plants. Its more than 18,000 employees work every day to help Framatomeโ€™s customers supply ever cleaner, safer and more economical low-carbon energy.

NAICS: 22
NAICS Definition: Utilities
Employees: 12,617
Subsidiaries: 1
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/ute-water-conservancy-district.jpeg
Ute Water Conservancy District
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
https://images.rankiteo.com/companyimages/framatome.jpeg
Framatome
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
Compliance Summary
Ute Water Conservancy District
100%
Compliance Rate
0/4 Standards Verified
Framatome
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Utilities Industry Average (This Year)

No incidents recorded for Ute Water Conservancy District in 2025.

Incidents vs Utilities Industry Average (This Year)

No incidents recorded for Framatome in 2025.

Incident History โ€” Ute Water Conservancy District (X = Date, Y = Severity)

Ute Water Conservancy District cyber incidents detection timeline including parent company and subsidiaries

Incident History โ€” Framatome (X = Date, Y = Severity)

Framatome cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/ute-water-conservancy-district.jpeg
Ute Water Conservancy District
Incidents

No Incident

https://images.rankiteo.com/companyimages/framatome.jpeg
Framatome
Incidents

No Incident

FAQ

Both Ute Water Conservancy District company and Framatome company demonstrate a comparable AI risk posture, with strong governance and monitoring frameworks in place.

Historically, Framatome company has disclosed a higher number of cyber incidents compared to Ute Water Conservancy District company.

In the current year, Framatome company and Ute Water Conservancy District company have not reported any cyber incidents.

Neither Framatome company nor Ute Water Conservancy District company has reported experiencing a ransomware attack publicly.

Neither Framatome company nor Ute Water Conservancy District company has reported experiencing a data breach publicly.

Neither Framatome company nor Ute Water Conservancy District company has reported experiencing targeted cyberattacks publicly.

Neither Ute Water Conservancy District company nor Framatome company has reported experiencing or disclosing vulnerabilities publicly.

Framatome company has more subsidiaries worldwide compared to Ute Water Conservancy District company.

Framatome company employs more people globally than Ute Water Conservancy District company, reflecting its scale as a Utilities.

Latest Global CVEs (Not Company-Specific)

Description

A vulnerability was determined in Tomofun Furbo 360 and Furbo Mini. The impacted element is an unknown function of the file /etc/shadow of the component Password Handler. Executing manipulation can lead to use of weak hash. The physical device can be targeted for the attack. The attack requires a high level of complexity. The exploitability is regarded as difficult. The exploit has been publicly disclosed and may be utilized. The firmware versions determined to be affected are Furbo 360 up to FB0035_FW_036 and Furbo Mini up to MC0020_FW_074. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-10-12
Updated
Date
2025-10-12
Risk Information
cvss2
Base: 1.0
Severity: HIGH
AV:L/AC:H/Au:S/C:P/I:N/A:N
cvss3
Base: 1.8
Severity: HIGH
CVSS:3.1/AV:P/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
cvss4
Base: 1.0
Severity: HIGH
CVSS:4.0/AV:P/AC:H/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was found in Tomofun Furbo 360 and Furbo Mini. The affected element is an unknown function of the component Root Account Handler. Performing manipulation results in use of hard-coded password. The attack must be initiated from a local position. The attack is considered to have high complexity. The exploitability is described as difficult. The exploit has been made public and could be used. The firmware versions determined to be affected are Furbo 360 up to FB0035_FW_036 and Furbo Mini up to MC0020_FW_074. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-10-12
Updated
Date
2025-10-12
Risk Information
cvss2
Base: 6.0
Severity: HIGH
AV:L/AC:H/Au:S/C:C/I:C/A:C
cvss3
Base: 7.0
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
cvss4
Base: 7.3
Severity: HIGH
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability has been found in Tomofun Furbo 360 and Furbo Mini. Impacted is an unknown function of the file TF_FQDN.json of the component GATT Interface URL Handler. Such manipulation leads to server-side request forgery. The attack may be performed from remote. Attacks of this nature are highly complex. The exploitability is considered difficult. The exploit has been disclosed to the public and may be used. The firmware versions determined to be affected are Furbo 360 up to FB0035_FW_036 and Furbo Mini up to MC0020_FW_074. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-10-12
Updated
Date
2025-10-12
Risk Information
cvss2
Base: 5.1
Severity: HIGH
AV:N/AC:H/Au:N/C:P/I:P/A:P
cvss3
Base: 5.6
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.3
Severity: HIGH
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A flaw has been found in Tomofun Furbo 360 and Furbo Mini. This issue affects some unknown processing of the component GATT Service. This manipulation of the argument DeviceToken causes information disclosure. The attack is only possible within the local network. A high degree of complexity is needed for the attack. The exploitability is assessed as difficult. The exploit has been published and may be used. The firmware versions determined to be affected are Furbo 360 up to FB0035_FW_036 and Furbo Mini up to MC0020_FW_074. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-10-12
Updated
Date
2025-10-12
Risk Information
cvss2
Base: 1.8
Severity: HIGH
AV:A/AC:H/Au:N/C:P/I:N/A:N
cvss3
Base: 3.1
Severity: HIGH
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
cvss4
Base: 2.3
Severity: HIGH
CVSS:4.0/AV:A/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was detected in Tomofun Furbo 360 and Furbo Mini. This vulnerability affects unknown code of the component GATT Service. The manipulation results in improper access controls. The attack can only be performed from the local network. The exploit is now public and may be used. The firmware versions determined to be affected are Furbo 360 up to FB0035_FW_036 and Furbo Mini up to MC0020_FW_074. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-10-12
Updated
Date
2025-10-12
Risk Information
cvss2
Base: 5.8
Severity: LOW
AV:A/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References