What is the official website of Volkswagen Automobile Berlin GmbH ?

The official website of Volkswagen Automobile Berlin GmbH is https://http://volkswagen-automobile-berlin.de.

What is Volkswagen Automobile Berlin GmbH's cybersecurity risk score?

Volkswagen Automobile Berlin GmbH has an AI-generated cybersecurity risk score of 747 out of 1000, indicating a Moderate security posture according to Rankiteo's assessment.

How many security incidents has Volkswagen Automobile Berlin GmbH experienced?

According to Rankiteo, Volkswagen Automobile Berlin GmbH currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Volkswagen Automobile Berlin GmbH been affected by any supply chain cyber incidents ?

According to Rankiteo, Volkswagen Automobile Berlin GmbH has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Volkswagen Automobile Berlin GmbH have SOC 2 Type 1 certification ?

According to Rankiteo, Volkswagen Automobile Berlin GmbH is not certified under SOC 2 Type 1.

Does Volkswagen Automobile Berlin GmbH have SOC 2 Type 2 certification ?

According to Rankiteo, Volkswagen Automobile Berlin GmbH does not hold a SOC 2 Type 2 certification.

Does Volkswagen Automobile Berlin GmbH comply with GDPR ?

According to Rankiteo, Volkswagen Automobile Berlin GmbH is not listed as GDPR compliant.

Does Volkswagen Automobile Berlin GmbH have PCI DSS certification ?

According to Rankiteo, Volkswagen Automobile Berlin GmbH does not currently maintain PCI DSS compliance.

Does Volkswagen Automobile Berlin GmbH comply with HIPAA ?

According to Rankiteo, Volkswagen Automobile Berlin GmbH is not compliant with HIPAA regulations.

Does Volkswagen Automobile Berlin GmbH have ISO 27001 certification ?

According to Rankiteo,Volkswagen Automobile Berlin GmbH is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Volkswagen Automobile Berlin GmbH operate in ?

Volkswagen Automobile Berlin GmbH operates primarily in the Motor Vehicle Manufacturing industry.

How many employees does Volkswagen Automobile Berlin GmbH have ?

Volkswagen Automobile Berlin GmbH employs approximately 106 people worldwide.

Does Volkswagen Automobile Berlin GmbH own any subsidiaries ?

Volkswagen Automobile Berlin GmbH presently has no subsidiaries across any sectors.

How many LinkedIn followers does Volkswagen Automobile Berlin GmbH have ?

Volkswagen Automobile Berlin GmbH's official LinkedIn profile has approximately 861 followers.

What is the NAICS classification code for Volkswagen Automobile Berlin GmbH ?

Volkswagen Automobile Berlin GmbH is classified under the NAICS code 3361, which corresponds to Motor Vehicle Manufacturing.

Does Volkswagen Automobile Berlin GmbH have a Crunchbase profile ?

No, Volkswagen Automobile Berlin GmbH does not have a profile on Crunchbase.

Does Volkswagen Automobile Berlin GmbH have a LinkedIn profile ?

Yes, Volkswagen Automobile Berlin GmbH maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/volkswagen-automobile-berlin-gmbh.

How many cybersecurity incidents has Volkswagen Automobile Berlin GmbH experienced ?

As of June 6, 2026, Rankiteo reports that Volkswagen Automobile Berlin GmbH has not experienced any cybersecurity incidents.

How many peer or competitor companies does Volkswagen Automobile Berlin GmbH have ?

Volkswagen Automobile Berlin GmbH has an estimated 12,962 peer or competitor companies worldwide.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

VABG

Boost Score +25 with badge (5 left)

747

/1000

Moderate

772

/1000

Fair

Volkswagen Automobile Berlin GmbH Vendor Cyber Rating & Cyber Score

volkswagen-automobile-berlin.de

Add Your Compliance Badge

Volkswagen Automobile Berlin ist mit 10 Standorten in Berlin vertreten. Wir zählen zu den größten Volkswagen Händlern in der Region. Seit 2006 gehören wir zur VGRD GmbH, Deutschlands größter Automobilhandelsgruppe. Neben dem Verkauf von Neu- und Gebrauchtwagen stehen wir für exzellenten Service rund um Ihr Fahrzeug. Aus Eduard Winter wurde im September 2009 Volkswagen Automobile Berlin. Aus Eduard Winter wurde im September 2009 Volkswagen Automobile Berlin. Wir setzen die Tradition einer Reihe von Automobilunternehmen fort, darunter große und bekannte Namen wie Eduard Winter, C.F.W. Staamann, H.G. Röhl, Braunschweig, Peterson, Mann und seit 2021 auch die ASB Autohaus Berlin. Im April 2022 kamen die drei Betriebe der Volkswagen Automobile

VABG A.I CyberSecurity Scoring

Scoring History

VABG

Volkswagen Automobile Berlin GmbH CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

No data available

Loading…

A.I.

VABG Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for VABG

Incidents vs Motor Vehicle Manufacturing Industry Avg (This Year)

No incidents recorded for Volkswagen Automobile Berlin GmbH in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Volkswagen Automobile Berlin GmbH in 2026.

Incident Types VABG vs Motor Vehicle Manufacturing Industry Avg (This Year)

No incidents recorded for Volkswagen Automobile Berlin GmbH in 2026.

Incident History - VABG (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Volkswagen Automobile Berlin GmbH Subsidiaries

VABG

Motor Vehicle Manufacturing

Website: https://http://volkswagen-automobile-berlin.de

Company Size: 106

VGRDMotor Vehicle Manufacturing

Porsche HoldingWholesale

SEAT Česká republikaVýroba motorových vozidel

Volkswagen Group Retail SpainMotor Vehicle Manufacturing

SIVAWholesale Motor Vehicles and Parts

Porsche ColombiaMotor Vehicle Manufacturing

Volkswagen Group Retail FranceMotor Vehicle Manufacturing

Porsche ChileMotor Vehicle Manufacturing

Gruppo Eurocar ItaliaAutomotive

Volkswagen Group SingaporeMotor Vehicle Manufacturing

Volkswagen Passenger Cars Malaysia (VPCM)Motor Vehicle Manufacturing

BONALDI MOTORI SPA Concessionaria Auto e Veicoli CommercialiMotor Vehicle Manufacturing

SOAUTO VGRPMotor Vehicle Manufacturing

Porsche Inter Auto RomaniaMotor Vehicle Manufacturing

MOON POWERUtilities

Porsche HungariaMotor Vehicle Manufacturing

Porsche SlovenijaMotor Vehicle Manufacturing

Porsche Bank GroupFinancial Services

RINALDI S.P.A.Retail

Porsche Croatia d.o.o.Motor Vehicle Manufacturing

Erre Esse S.p.A.Motor Vehicle Manufacturing

Porsche Inter Auto - Österreichs größte AutohandelsgruppeMotor Vehicle Manufacturing

Porsche Automotive Investment GmbH, China BranchesMotor Vehicle Manufacturing

Porsche Media & CreativeAdvertising Services

Porsche Finance Group RomaniaFinancial Services

Porsche AlbaniaAutomotive

Autocentro BaistrocchiMotor Vehicle Manufacturing

Porsche Volkswagen Servicios Financieros Chile SpAFinancial Services

Eurocar FirenzeRetail

Porsche WienMotor Vehicle Manufacturing

Porsche Inter Auto S - SerbiaMotor Vehicle Manufacturing

DorigoniMotor Vehicle Manufacturing

Škoda ÖsterreichMotor Vehicle Manufacturing

Porsche SCG dooWholesale Motor Vehicles and Parts

Porsche Inter Auto CZMotor Vehicle Manufacturing

Porsche SlovakiaMotor Vehicle Manufacturing

Porsche Zentrum Oberer ZürichseeMotor Vehicle Manufacturing

Porsche Inter Auto d.o.o.Motor Vehicle Manufacturing

Porsche Inter Auto SloveniaMotor Vehicle Manufacturing

Porsche BHWholesale

Porsche Finance Group UkraineFinancial Services

Porsche Ukraine LLCMotor Vehicle Manufacturing

Porsche MovilidadFinancial Services

Porsche Inter Auto BG EOODMotor Vehicle Manufacturing

SEAT Center ArrábidaMotor Vehicle Manufacturing

Porsche Finance Group SloveniaFinancial Services

Porsche Inter Auto Slovakia, spol. s r.o.Motor Vehicle Manufacturing

Eurocar Friuli Venezia GiuliaAutomotive

Porsche Informatik GmbHIT Services and IT Consulting

Saottini AutoMotor Vehicle Manufacturing

PAIG Japan Automobile Investment GKRetail Motor Vehicles

Porsche MacedoniaMotor Vehicle Manufacturing

Porsche BGWholesale

Porsche Inter Auto BHMotor Vehicle Manufacturing

Porsche Leasing MacedoniaFinancial Services

Porsche Informatik FranceIT Services and IT Consulting

Volkswagen Puchong by PHS AutohausRetail Motor Vehicles

Porsche Inter Auto HungariaRetail Motor Vehicles

Porsche Inter Auto UkraineRetail

DIGILAB ITALIA Srl - Filiale Italiana di PORSCHE INFORMATIK GmbHIT Services and IT Consulting

Vicentini S.p.A. | Gruppo Eurocar ItaliaAutomotive

Din BilMotor Vehicle Manufacturing

Audi ÖsterreichMotor Vehicle Manufacturing

Porsche RomaniaAutomotive

Volkswagen Automobile HamburgAutomotive

Audi Stuttgart GmbHMotor Vehicle Manufacturing

Volkswagen Automobile Stuttgart GmbHAutomotive

Audi HamburgMotor Vehicle Manufacturing

MAHAG GruppeMotor Vehicle Manufacturing

Audi Frankfurt GmbHMotor Vehicle Manufacturing

Audi Berlin GmbHMotor Vehicle Manufacturing

Schwaba GmbHMotor Vehicle Manufacturing

Audi Leipzig GmbHMotor Vehicle Manufacturing

Audi Hannover GmbHMotor Vehicle Manufacturing

Auto & Service PIA GmbHMotor Vehicle Manufacturing

Volkswagen Automobile Chemnitz GmbHMotor Vehicle Manufacturing

Volkswagen Automobile Rhein-Neckar GmbHMotor Vehicle Manufacturing

Volkswagen Automobile Leipzig GmbHMotor Vehicle Manufacturing

Volkswagen Automobile Frankfurt GmbHMotor Vehicle Manufacturing

Loading…

Volkswagen Automobile Berlin GmbH Similar Companies

Iveco Group

cb ivecogroup.com

Iveco Group N.V. (MI: IVG) is the home of unique people and brands that power your business and mission to advance a more sustainable society. The seven brands are each a major force in its specific business: IVECO, a pioneering commercial vehicles brand that designs, manufactures, and markets heavy, medium, and light-duty trucks; FPT Industrial, a global leader in a vast array of advanced powertrain technologies in the agriculture, construction, marine, power generation, and commercial vehicles sectors; IVECO BUS and HEULIEZ, mass-transit and premium bus and coach brands; IDV, for highly specialised defence and civil protection equipment; ASTRA, a leader in large-scale heavy-duty quarry and construction vehicles; and IVECO CAPITAL, the financing arm which supports them all. At 31st December 2023, Iveco Group employed more than 36,000 people around the world and had 20 industrial sites and 31 R&D centres.

Mercedes-Benz USA

mbusa.com

Mercedes-Benz USA, LLC (MBUSA), a Daimler Company, is responsible for the Distribution and Marketing of Mercedes-Benz and smart products in the United States. MBUSA was founded in 1965 and prior to that Mercedes-Benz cars were sold in the United States by Mercedes-Benz Car Sales, Inc., a subsidiary of the Studebaker-Packard corporation. Today MBUSA has over 300 dealerships with more than 1400 employees. For employment opportunities please visit: http://bit.ly/2tFzlOV. For information on how to get the most out of your Mercedes-Benz vehicle, visit the Owners' Support instructional videos section of our site: http://www.mbusa.com/mercedes/owners/videos

TVS Motor Company

tvsmotor.com

TVS Motor Company is a reputed two and three-wheeler manufacturer globally, championing progress through Mobility with a focus on sustainability. Rooted in our 100-year legacy of Trust, Value, and Passion for Customers and Exactness, we take pride in making internationally aspirational products of the highest quality through innovative and sustainable processes. The Company was started in 1979 as the flagship brand of TVS Group, which was founded by T.V. Sundaram lyengar. Under the persistence and diligent leadership of the Chairman Emeritus, Venu Srinivasan, the company has become the largest member of the TVS Group in terms of size and turnover. Prof Sir Ralf Dieter Speth, Chairman, TVS Motor Company and Sudarshan Venu, Managing Director, TVS Motor Company are forging a bright path for the future of the company. Today, TVS Motor is present in 80+ countries and has over 50million happy customers in India. The Company also has strong socially responsible focus and supports the Srinivasan Services Trust to carry out numerous sustainable initiatives to positively contribute to the lives of communities across regions. TVS Motor has four state-of-the-art manufacturing facilities at Hosur in Tamil Nadu, Mysore in Karnataka, Nalagarh in Himachal Pradesh and Karawang in Indonesia and is the first two-wheeler manufacturer in the world to be conferred with the prestigious Deming Prize for excellence in quality. Our products lead in their respective categories in the J.D. Power IQS and APEAL surveys for five years. We have been ranked No. 1 Company in the J.D. Power Customer Service Satisfaction Survey for consecutive four years. Our group company, Norton Motorcycles, based in the United Kingdom, is one of the most emotive motorcycle brands in the world. Our subsidiaries in the personal e-mobility space, Swiss E-Mobility Group (SEMG) and EGO Movement have a leading position in the e-bike market in Switzerland.

LEONI

leoni.com

LEONI is a global provider of products, solutions and services for energy and data management in the automotive industry. The group of companies has around 87,000 employees in 21 countries and generated consolidated sales of EUR 5 billion in 2024. The partnership between LEONI and Luxshare Group has been effective since mid-2025. LEONI's largest customer group comprises the global car, commercial vehicle and component supply industry. The company is one of the world's largest suppliers of complex wiring systems and customer-specific cable harnesses. It’s value chain also comprises related components, from development to production. As an innovation partner with distinctive development and systems expertise, LEONI supports its customers on the path to increasingly sustainable and connected mobility concepts, from autonomous driving to alternative drives as well as charging systems. To this end, LEONI develops wiring systems that reduce complexity and enable higher levels of automation through zonal architecture, for example. Imprint: https://www.leoni.com/en/imprint/ Privacy statement: https://www.leoni.com/en/data-protection/

Tesla

cb tesla.com

Tesla is accelerating the world’s transition to sustainable abundance. To achieve our mission, we're building a world powered by solar, enabled by battery storage and transported by electric vehicles. We’re committed to hiring and developing top talent from around the world for any given discipline. Headquartered in Texas, we operate six huge, vertically integrated factories across three continents. With over 100,000 employees, our teams take a first-principles approach to designing, building, selling and servicing our products in-house. Our world-class teams operate with a non-conventional philosophy of inter-disciplinary collaboration. Each member of the team is expected to challenge and to be challenged, to create, and to innovate. We’re tackling the world’s most difficult and important problems—and we wouldn’t succeed without our shared passion for making the world a better place.

Rivian

cb rivian.com

Doing something different is never easy. It requires courage, optimism and grit. Core to our mission is building a team of adventurous individuals determined to make a positive impact on the world. This means challenging ourselves constantly. Stretching beyond the bounds of conventional thinking. Reframing old problems. Seeking new solutions. And operating comfortably in a space of uncertainty. While our backgrounds are diverse, our team shares a love of the outdoors and a desire to protect it for future generations. Do you like doing the impossible? We’d love to hear from you.

American Honda Motor Company, Inc.

honda.com

We are Honda. A company built on dreams and the determination to make them come true. Driven by our commitment to society and the planet, our work brings joy to our customers and enhances mobility, as we work to help people everywhere expand their life’s potential. Our products, from cars and trucks, to advanced light jets and other forms of mobility, reflect our belief that the purpose of technology is to help people. Together, we are building an inclusive culture where people feel seen and celebrated. Where associates from a variety of backgrounds can apply their unique ideas and experiences to help us create a cleaner, safer, more exciting mobile world. You’re invited to join Honda on this journey. Your individual skills, passion, persistence, innovative mindset and challenging spirit are needed to help Honda Bring the Future. Bring the Future at honda.com/careers

Motherson Group

motherson.com

Motherson is a diversified global design, engineering, manufacturing and assembly (DEMA) specialist, delivering full-system solutions to customers across a wide range of industries. With a robust network of 425 state-of-the-art facilities across 44 countries, and a dedicated workforce of more than 200,000 professionals, Motherson is continually working toward its vision of being a globally preferred sustainable solutions provider for its stakeholders. The group recorded revenues of USD 21.2 billion in 2024-25 and is ranked among the top 15 automotive suppliers worldwide. As a trusted partner to OEM customers, Motherson offers an extensive, versatile product portfolio spanning the entire spectrum of the mobility industry. This includes passenger and commercial vehicles, two- and three-wheelers, rolling stock, off-highway vehicles, earthmoving, material-handling and agricultural machinery. Its product range encompasses electrical distribution systems, fully assembled vehicle interior and exterior modules, rear vision systems, moulded plastic parts and assemblies, injection moulding tools, rubber components, lighting systems, and machined metal products. Beyond the automotive sector, Motherson has strategically diversified into industries such as health and medical, aerospace, consumer electronics, logistics, and industrial IT solutions. This expansion reflects the group’s adaptability and unwavering commitment to meeting its customers' evolving needs. Motherson believes its employees are its partners in progress, its biggest asset. The organisation nurtures an environment where employees thrive as dynamic professionals and individuals. The organisation is responsive to its employees' professional aspirations and provides a range of growth opportunities, enabling them to advance professionally and to take on strategic roles within the organisation.

Gestamp

gestamp.com

Gestamp is a multinational specialized in the design, development and manufacture of highly engineered metal components for the main vehicle manufacturers. It develops products with an innovative design to produce lighter and safer vehicles, which offer lower energy consumption and a lower environmental impact. Its products cover the areas of BiW, chassis and mechanisms. Gestamp is present in 24 countries with 115 production plants, 13 R&D centers and a workforce of more than 43,000 employees worldwide.

Loading…

NEWS

Volkswagen Automobile Berlin GmbH CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

Automotive Cyber Security, Connectivity & SDV Week 2025

Interesting topics presented in a very good way. Good choice of speakers and panellists. It was very valuable. Good for networking, good for seeing the current ...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-7654

SUMMARY

The Admin Columns plugin for WordPress is vulnerable to PHP Object Injection leading to Remote Code Execution in versions up to and including 7.0.18. This is due to the use of `unserialize()` without an `allowed_classes` restriction in the `IdsToCollection::get_ids_from_string()` function, which processes attacker-controlled post meta values without proper validation. This makes it possible for authenticated attackers with Contributor-level access and above to inject a serialized PHP object into a post's custom meta field and trigger arbitrary code execution by exploiting a bundled POP gadget chain, resulting in remote code execution as the web server user.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: 8.8)

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

2.8

REFERENCES

CVE-2026-7523

SUMMARY

The Alba Board plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.1.3. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for authenticated attackers, with subscriber-level access and above, to access arbitrary private alba_card post data, including title, description, assignee, due date, tags, and comments, that is intended to be restricted to Administrators and Editors. The handler is registered via the wp_ajax_nopriv_ hook and its nonce is exposed to all site visitors through wp_localize_script on pages containing the [alba_board] shortcode, making this exploitable by unauthenticated users who can access any such page.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: 4.3)

cvss3

Base Score: 4.3

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Impact Score

1.4

Exploitability

2.8

REFERENCES

CVE-2026-45409

SUMMARY

Internationalized Domain Names in Applications (IDNA) for Python provides support for Internationalized Domain Names in Applications (IDNA) and Unicode IDNA Compatibility Processing. In versions prior to 3.15, payloads such as `"\u0660" * N` or `"\u30fb" * N + "\u6f22"` utilize the `valid_contexto` function prior to length rejection, and for high values of `N` will take a long time to process. This is the same issue as CVE-2024-3651, however the original remediation in 2024 was not a complete fix. A specially crafted argument to the `idna.encode()` function could consume significant resources. This may lead to a denial-of-service. Starting in version 3.14, the function rejects long inputs as soon as practicable prior to any further processing to minimize resource consumption. In version 3.15, this approach was extended to lesser used alternate functions (i.e. per-label conversions and codec support). A workaround is available. Domain names cannot exceed 253 characters in length. If this length limit is enforced prior to passing the domain to the `idna.encode()` function, it should no longer consume significant resources. This is triggered by arbitrarily large inputs that would not occur in normal usage, but may be passed to the library assuming there is no preliminary input validation by the higher-level application.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 6.9

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://github.com/kjd/idna/security/advisories/GHSA-65pc-fj4g-8rjx

CVE-2026-11431

SUMMARY

A path traversal vulnerability exists in the Projects Service download endpoint shared by Altium Enterprise Server and Altium 365. An authenticated user can supply a crafted path parameter that bypasses validation, allowing arbitrary files (including entire directories returned as archives) to be read from the server filesystem. Because the readable files include service configuration and credential material, exploitation can be used to gather information enabling further compromise. The issue can be combined with CVE-2026-11424 to reach the cloud-side endpoint. On multi-tenant Altium 365 deployments, the readable configuration could have exposed credentials shared across services. Altium Enterprise Server is fixed in 8.1.1; the issue has been remediated in Altium 365 at the service level.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 8.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://www.altium.com/platform/security-compliance/security-advisories

CVE-2026-11429

SUMMARY

A path traversal vulnerability exists in the Git Service component shared by Altium Enterprise Server and Altium 365. The service accepts a sequence of post-clone file-manipulation operations that use user-supplied paths without validation, allowing an authenticated user with basic git access to move arbitrary files outside the intended repository area. This file-move primitive can be used to place attacker-controlled script content into directories where it is later executed by the service, resulting in remote code execution under the Git Service account. On multi-tenant Altium 365 deployments, this could have allowed access to data belonging to other tenants on the same infrastructure node. Altium Enterprise Server is fixed in 8.1.1; the issue has been remediated in Altium 365 at the service level.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 9.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://www.altium.com/platform/security-compliance/security-advisories

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…