Comparison Overview

Vesta, Inc

VS

Kleur

Vesta, Inc

9301 Annapolis Rd, Lanham, Maryland, 20706, US
Last Update: 2026-01-23
View Profile
Between 750 and 799
http://www.vesta.org

Our Company Vesta, Inc. is a private, non-profit, comprehensive behavioral health care organization with six locations throughout Maryland. Vesta offers comprehensive, flexible, and ongoing services for adults, children and adolescents with a wide range of psychological difficulties, including serious and persistent mental illness. Services include: individual, couple, family, and group therapy, medication management, day rehabilitation programs, residential rehabilitation programs, substance abuse counseling supported housing. Our Philosophy The mission and guiding principle of Vesta, Inc is to make each client and their personal development a priority. All individuals, regardless of their illness or housing status, are entitled to a quality of life which includes stable housing, employment, and community involvement. Vesta recognizes there are barriers and limitations in the form of stigma, funding, and availability of programs to meet the goals of those we serve and is dedicated to overcoming those obstacles.

NAICS: 621
NAICS Definition:
Employees: 152
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

Kleur

None
Last Update: 2026-01-22
Between 800 and 849
http://www.kleur.eu

Kleur Kinder- en Jeugdzorg ondersteunt kinderen en jeugdigen met een ontwikkelingsbeperking, hun ouders en anderen die nauw bij het kind betrokken zijn. Kinderen en jeugdigen groeien doorgaans op binnen het eigen gezin en hun eigen omgeving. Voor kinderen met een ontwikkelingsbeperking en hun ouders gaat dat niet altijd als vanzelf. Soms hebben het kind en de ouders behoefte aan ondersteuning. De medewerkers van Kleur bieden ondersteuning die nauw aansluit bij de vraag van het kind, de jeugdige, het gezin en de omgeving. Zo krijgt ieder kind en jeugdige de kans op zijn eigen wijze ‘groot te worden en te zijn’ en kan het kind samen met ouders en zijn sociaal netwerk kleur geven aan zijn eigen leven. Wij werken in het stroomgebied van de Maas van Venlo tot Nijmegen en het gebied rondom Oss, Veghel en Uden Kleur werkt nauw samen met allerlei andere partners vanuit welzijn, cure en care om samen tot de meest passende antwoorden komen die ouders , kinderen en jeugdigen van ons vragen Onze diensntverleing wordt bekostigd uit de AWBZ, de zorgverzekeringswet, de WMO en via private financiering

NAICS: 62133
NAICS Definition: Offices of Mental Health Practitioners (except Physicians)
Employees: 25
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/vesta-inc.jpeg
Vesta, Inc
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/defaultcompany.jpeg
Kleur
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Vesta, Inc
100%
Compliance Rate
0/4 Standards Verified
Kleur
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Mental Health Care Industry Average (This Year)

No incidents recorded for Vesta, Inc in 2026.

Incidents vs Mental Health Care Industry Average (This Year)

No incidents recorded for Kleur in 2026.

Incident History — Vesta, Inc (X = Date, Y = Severity)

Vesta, Inc cyber incidents detection timeline including parent company and subsidiaries

Incident History — Kleur (X = Date, Y = Severity)

Kleur cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/vesta-inc.jpeg
Vesta, Inc
Incidents

No Incident

https://images.rankiteo.com/companyimages/defaultcompany.jpeg
Kleur
Incidents

No Incident

FAQ

Kleur company demonstrates a stronger AI Cybersecurity Score compared to Vesta, Inc company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, Kleur company has disclosed a higher number of cyber incidents compared to Vesta, Inc company.

In the current year, Kleur company and Vesta, Inc company have not reported any cyber incidents.

Neither Kleur company nor Vesta, Inc company has reported experiencing a ransomware attack publicly.

Neither Kleur company nor Vesta, Inc company has reported experiencing a data breach publicly.

Neither Kleur company nor Vesta, Inc company has reported experiencing targeted cyberattacks publicly.

Neither Vesta, Inc company nor Kleur company has reported experiencing or disclosing vulnerabilities publicly.

Neither Vesta, Inc nor Kleur holds any compliance certifications.

Neither company holds any compliance certifications.

Neither Vesta, Inc company nor Kleur company has publicly disclosed detailed information about the number of their subsidiaries.

Vesta, Inc company employs more people globally than Kleur company, reflecting its scale as a Mental Health Care.

Neither Vesta, Inc nor Kleur holds SOC 2 Type 1 certification.

Neither Vesta, Inc nor Kleur holds SOC 2 Type 2 certification.

Neither Vesta, Inc nor Kleur holds ISO 27001 certification.

Neither Vesta, Inc nor Kleur holds PCI DSS certification.

Neither Vesta, Inc nor Kleur holds HIPAA certification.

Neither Vesta, Inc nor Kleur holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

Improper validation of specified type of input in M365 Copilot allows an unauthorized attacker to disclose information over a network.

Published
Date
2026-01-22
Updated
Date
2026-01-22
Risk Information
cvss3
Base: 9.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N
References
Description

Improper access control in Azure Front Door (AFD) allows an unauthorized attacker to elevate privileges over a network.

Published
Date
2026-01-22
Updated
Date
2026-01-22
Risk Information
cvss3
Base: 9.8
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
References
Description

Azure Entra ID Elevation of Privilege Vulnerability

Published
Date
2026-01-22
Updated
Date
2026-01-22
Risk Information
cvss3
Base: 9.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
References
Description

Moonraker is a Python web server providing API access to Klipper 3D printing firmware. In versions 0.9.3 and below, instances configured with the "ldap" component enabled are vulnerable to LDAP search filter injection techniques via the login endpoint. The 401 error response message can be used to determine whether or not a search was successful, allowing for brute force methods to discover LDAP entries on the server such as user IDs and user attributes. This issue has been fixed in version 0.10.0.

Published
Date
2026-01-22
Updated
Date
2026-01-22
Risk Information
cvss4
Base: 2.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Runtipi is a Docker-based, personal homeserver orchestrator that facilitates multiple services on a single server. Versions 3.7.0 and above allow an authenticated user to execute arbitrary system commands on the host server by injecting shell metacharacters into backup filenames. The BackupManager fails to sanitize the filenames of uploaded backups. The system persists user-uploaded files directly to the host filesystem using the raw originalname provided in the request. This allows an attacker to stage a file containing shell metacharacters (e.g., $(id).tar.gz) at a predictable path, which is later referenced during the restore process. The successful storage of the file is what allows the subsequent restore command to reference and execute it. This issue has been fixed in version 4.7.0.

Published
Date
2026-01-22
Updated
Date
2026-01-22
Risk Information
cvss3
Base: 8.0
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
References