Comparison Overview

Q: Between Valero company and Weatherford company, which one has the best AI Cybersecurity Score ?

Valero company demonstrates a stronger AI Cybersecurity Score compared to Weatherford company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Q: Between Valero company and Weatherford company, which one has experienced more cyber incidents in the past ?

Historically, Weatherford company has disclosed a higher number of cyber incidents compared to Valero company.

Q: Between Valero company and Weatherford company, which one has experienced more cyber incidents this year ?

In the current year, Weatherford company and Valero company have not reported any cyber incidents.

Q: Between Valero company and Weatherford company, which one has experienced at least one ransomware attack ?

Neither Weatherford company nor Valero company has reported experiencing a ransomware attack publicly.

Q: Between Valero company and Weatherford company, which one has experienced at least one data breach ?

Neither Weatherford company nor Valero company has reported experiencing a data breach publicly.

Q: Between Valero company and Weatherford company, which one has experienced at least one targeted cyberattack ?

Neither Weatherford company nor Valero company has reported experiencing targeted cyberattacks publicly.

Q: Between Valero company and Weatherford company, which one has experienced at least one vulnerability ?

Neither Valero company nor Weatherford company has reported experiencing or disclosing vulnerabilities publicly.

Q: Between Valero company and Weatherford company, which one holds the most compliance certifications ?

Neither Valero nor Weatherford holds any compliance certifications.

Q: Between Valero company and Weatherford company, which one has the most subsidiaries ?

Weatherford company has more subsidiaries worldwide compared to Valero company.

Valero

One Valero Way, San Antonio, TX, US, 78249

Last Update: 2025-12-10

View Profile

Between 750 and 799

http://www.valero.com/

Valero is an international manufacturer and marketer of transportation fuels and petrochemical products. We are a Fortune 500 company based in San Antonio, Texas, fueled by nearly 10,000 employees and 15 petroleum refineries with a combined throughput capacity of approximately 3.2 million barrels per day. We also proudly operate 12 ethanol plants in the Mid-Continent of the U.S., with a combined production capacity of 1.6 billion gallons per year. Our petroleum refineries are located in the United States, Canada and the United Kingdom. Valero also is a joint venture partner in Diamond Green Diesel, which operates a renewable diesel plant in Norco, Louisiana. Diamond Green Diesel is North America’s largest biomass-based diesel plant. Valero sells its products in the wholesale rack or bulk markets in the U.S., Canada, the U.K., Ireland and Latin America. Approximately 7,000 outlets carry Valero’s brand names. Visit www.valero.com for more information, and click 'Careers' to explore opportunities!

NAICS: 211

NAICS Definition: Oil and Gas Extraction

Employees: 10,812

Subsidiaries: 0

12-month incidents

0

Known data breaches

0

Attack type number

0

View Profile

Weatherford

undefined, Dublin, undefined, undefined, IE

Last Update: 2025-12-09

Between 750 and 799

https://www.weatherford.com

Weatherford International plc (Nasdaq: WFRD) is a leading global energy services company. Operating in approximately 75 countries, the Company answers the challenges of the energy industry with its global talent network of approximately 17,000 team members and approximately 350 operating locations, including manufacturing, research and development, service, and training facilities.

NAICS: 211

NAICS Definition: Oil and Gas Extraction

Employees: 29,461

Subsidiaries: 3

12-month incidents

0

Known data breaches

0

Attack type number

0

Valero

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Weatherford

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Oil and Gas Industry Average (This Year)

No incidents recorded for Valero in 2025.

Incidents vs Oil and Gas Industry Average (This Year)

No incidents recorded for Weatherford in 2025.

Incident History — Valero (X = Date, Y = Severity)

Valero cyber incidents detection timeline including parent company and subsidiaries

Incident History — Weatherford (X = Date, Y = Severity)

Weatherford cyber incidents detection timeline including parent company and subsidiaries

Valero

Incidents

No Incident

Weatherford

Incidents

No Incident

Valero company demonstrates a stronger AI Cybersecurity Score compared to Weatherford company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, Weatherford company has disclosed a higher number of cyber incidents compared to Valero company.

In the current year, Weatherford company and Valero company have not reported any cyber incidents.

Neither Weatherford company nor Valero company has reported experiencing a ransomware attack publicly.

Neither Weatherford company nor Valero company has reported experiencing a data breach publicly.

Neither Weatherford company nor Valero company has reported experiencing targeted cyberattacks publicly.

Neither Valero company nor Weatherford company has reported experiencing or disclosing vulnerabilities publicly.

Neither Valero nor Weatherford holds any compliance certifications.

Neither company holds any compliance certifications.

Weatherford company has more subsidiaries worldwide compared to Valero company.

Weatherford company employs more people globally than Valero company, reflecting its scale as a Oil and Gas.

Neither Valero nor Weatherford holds SOC 2 Type 1 certification.

Neither Valero nor Weatherford holds SOC 2 Type 2 certification.

Neither Valero nor Weatherford holds ISO 27001 certification.

Neither Valero nor Weatherford holds PCI DSS certification.

Neither Valero nor Weatherford holds HIPAA certification.

Neither Valero nor Weatherford holds GDPR certification.

Description

Hitachi Vantara Pentaho Data Integration and Analytics Community Dashboard Framework prior to versions 10.2.0.4, including 9.3.0.x and 8.3.x display the full server stack trace when encountering an error within the GetCdfResource servlet.

Published

Date

2025-12-15

Updated

Date

2025-12-15

Risk Information

cvss3

Base: 5.3

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

References

https://support.pentaho.com/hc/en-us/articles/41833799577741--Resolved-Hitachi-Vantara-Pentaho-Business-Analytics-Server-Generation-of-Error-Message-Containing-Sensitive-Information-Versions-before-10-2-0-4-Impacted-CVE-2025-9122

Description

Pentaho Data Integration and Analytics Community Dashboard Editor plugin versions before 10.2.0.4, including 9.3.0.x and 8.3.x, deserialize untrusted JSON data without constraining the parser to approved classes and methods.

Published

Date

2025-12-15

Updated

Date

2025-12-15

Risk Information

cvss3

Base: 8.8

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References

https://support.pentaho.com/hc/en-us/articles/41832536185613--Resolved-Hitachi-Vantara-Pentaho-Business-Analytics-Server-Deserialization-of-Untrusted-Data-Versions-before-10-2-0-4-Impacted-CVE-2025-9121

Description

A security flaw has been discovered in CTCMS Content Management System up to 2.1.2. The impacted element is an unknown function in the library /ctcms/libs/Ct_Config.php of the component Backend System Configuration Module. The manipulation of the argument Cj_Add/Cj_Edit results in code injection. The attack can be executed remotely. The exploit has been released to the public and may be exploited.

Published

Date

2025-12-15

Updated

Date

2025-12-15

Risk Information

cvss2

Base: 5.8

Severity: LOW

AV:N/AC:L/Au:M/C:P/I:P/A:P

cvss3

Base: 4.7

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

cvss4

Base: 5.1

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

A vulnerability was identified in CTCMS Content Management System up to 2.1.2. The affected element is the function Save of the file /ctcms/libs/Ct_App.php of the component Backend App Configuration Module. The manipulation of the argument CT_App_Paytype leads to code injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.

Published

Date

2025-12-15

Updated

Date

2025-12-15

Risk Information

cvss2

Base: 5.8

Severity: LOW

AV:N/AC:L/Au:M/C:P/I:P/A:P

cvss3

Base: 4.7

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

cvss4

Base: 5.1

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

Weblate is a web based localization tool. In versions prior to 5.15, it was possible to accept an invitation opened by a different user. Version 5.15. contains a patch. As a workaround, avoid leaving one's Weblate sessions with an invitation opened unattended.

Published

Date

2025-12-15

Updated

Date

2025-12-15

Risk Information

cvss4

Base: 1.0

Severity: HIGH

CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Valero

VS

Weatherford

Valero

Weatherford

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Oil and Gas Industry Average (This Year)

Incidents vs Oil and Gas Industry Average (This Year)

Incident History — Valero (X = Date, Y = Severity)

Incident History — Weatherford (X = Date, Y = Severity)

Notable Incidents

No Incident

No Incident

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2025-9122

Risk Information

CVE-2025-9121

Risk Information

CVE-2025-14730

Risk Information

CVE-2025-14729

Risk Information

CVE-2025-64725

Risk Information

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Valero

VS

Weatherford

Valero

Weatherford

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Oil and Gas Industry Average (This Year)

Incidents vs Oil and Gas Industry Average (This Year)

Incident History — Valero (X = Date, Y = Severity)

Incident History — Weatherford (X = Date, Y = Severity)

Notable Incidents

No Incident

No Incident

FAQ

Between Valero company and Weatherford company, which one has the best AI Cybersecurity Score ?

Between Valero company and Weatherford company, which one has experienced more cyber incidents in the past ?

Between Valero company and Weatherford company, which one has experienced more cyber incidents this year ?

Between Valero company and Weatherford company, which one has experienced at least one ransomware attack ?

Between Valero company and Weatherford company, which one has experienced at least one data breach ?

Between Valero company and Weatherford company, which one has experienced at least one targeted cyberattack ?

Between Valero company and Weatherford company, which one has experienced at least one vulnerability ?

Between Valero company and Weatherford company, which one holds the most compliance certifications ?

Between Valero company and Weatherford company, which one holds the fewest compliance certifications ?

Between Valero company and Weatherford company, which one has the most subsidiaries ?

Between Valero company and Weatherford company, which one has the largest number of employees ?

Between Valero and Weatherford, which company holds both SOC 2 Type 1 certifications ?

Between Valero and Weatherford, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — Valero or Weatherford ?

Which company is PCI DSS compliant — Valero or Weatherford ?

Between Valero and Weatherford, which company complies with HIPAA regulations for healthcare data ?

Between Valero and Weatherford, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2025-9122

Risk Information

CVE-2025-9121

Risk Information

CVE-2025-14730

Risk Information

CVE-2025-14729

Risk Information

CVE-2025-64725

Risk Information