Comparison Overview

VRV - A Chart Industries Company

VS

Zitron Australia Pty Ltd

VRV - A Chart Industries Company

Via Burago, 24, Ornago, Lombardia, 20876, IT
Last Update: 2025-11-27
View Profile
Between 750 and 799
https://www.vrv.com

VRV - a Chart Industries Company - is a leading company in the design and manufacture of pressure equipment for the chemical, petrochemical, refining, energy, fertilizer, and cryogenic industries, through its D&S (Distribution & Storage) and E&C (Energy & Chemicals) Divisions. The Company has additional engineering and manufacturing facilities in Europe and India, which significantly expanded the specialty equipment manufacturing capacity. The D&S division provides a complete range of products for the storage, distribution, and vaporization of liquid gases. The complete portfolio of cryogenic distribution and storage equipment includes: LNG storage tanks, LNG systems, LHY Storage Tanks, LHY Tanks / Containers, Integrated systems and aftermarket services for gas processing - LNG, HLNG (On-board LNG tanks) for main automotive heavy vehicle suppliers The E&C division serves the refining, chemical, petrochemical, fertilizer, and offshore industries with a range of custom engineered, reactors, columns, drums, separators and specialty shell and tube heat exchangers. VRV is an approved vendor for multiple licensed processes.

NAICS: None
NAICS Definition:
Employees: 367
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

Zitron Australia Pty Ltd

3 Redemptora Rd, Perth, Western Australia, 6166, AU
Last Update: 2025-11-25
Between 750 and 799
http://www.zitron.com

Zitrón was founded in 1963 in the Spanish province of Asturias and is today the world’s leading supplier of ventilation systems for underground tunnels (both mining and transportation). With productions centres in nine countries distributed over five continents, Zitrón is able to offer its clients custom designed and engineered solutions for their specific ventilation requirements. All Zitrón primary ventilation systems are tested in our manufacturing facility located in Asturias, Spain. This resource is the largest axial fan test bench in the world. Accredited by the “Air Movement and Control Association (AMCA) International”, the test bench is 100m long and has a cross-section of 52 square metres. Fans with impeller diameters of up to 5.2m can be tested across their total operating range, including the “stall” status, whilst running at their full nominal speed and as per the parameters nominated by clients. Zitrón Australia was formed in 2011 to expand the local business, with the aim of building on the market gains achieved in earlier years when Zitrón products were supplied by Downunder Mining Pty Ltd under a licence arrangement that has been in place since 1998. Today, Zitrón is firmly established as a major player in the Australian underground ventilation market, with an acknowledged reputation for the quality of our work and for our willingness to go to the next level to ensure that you have the optimal solutions for your specific environments. We combine global strength with local experience and capabilities to further our goal of being the underground ventilation provider of choice in Australia and beyond.

NAICS: None
NAICS Definition: Others
Employees: 23
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/vrv-group.jpeg
VRV - A Chart Industries Company
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/zitron-australia-pty-ltd.jpeg
Zitron Australia Pty Ltd
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
VRV - A Chart Industries Company
100%
Compliance Rate
0/4 Standards Verified
Zitron Australia Pty Ltd
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Mechanical Or Industrial Engineering Industry Average (This Year)

No incidents recorded for VRV - A Chart Industries Company in 2025.

Incidents vs Mechanical Or Industrial Engineering Industry Average (This Year)

No incidents recorded for Zitron Australia Pty Ltd in 2025.

Incident History — VRV - A Chart Industries Company (X = Date, Y = Severity)

VRV - A Chart Industries Company cyber incidents detection timeline including parent company and subsidiaries

Incident History — Zitron Australia Pty Ltd (X = Date, Y = Severity)

Zitron Australia Pty Ltd cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/vrv-group.jpeg
VRV - A Chart Industries Company
Incidents

No Incident

https://images.rankiteo.com/companyimages/zitron-australia-pty-ltd.jpeg
Zitron Australia Pty Ltd
Incidents

No Incident

FAQ

VRV - A Chart Industries Company company demonstrates a stronger AI Cybersecurity Score compared to Zitron Australia Pty Ltd company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, Zitron Australia Pty Ltd company has disclosed a higher number of cyber incidents compared to VRV - A Chart Industries Company company.

In the current year, Zitron Australia Pty Ltd company and VRV - A Chart Industries Company company have not reported any cyber incidents.

Neither Zitron Australia Pty Ltd company nor VRV - A Chart Industries Company company has reported experiencing a ransomware attack publicly.

Neither Zitron Australia Pty Ltd company nor VRV - A Chart Industries Company company has reported experiencing a data breach publicly.

Neither Zitron Australia Pty Ltd company nor VRV - A Chart Industries Company company has reported experiencing targeted cyberattacks publicly.

Neither VRV - A Chart Industries Company company nor Zitron Australia Pty Ltd company has reported experiencing or disclosing vulnerabilities publicly.

Neither VRV - A Chart Industries Company nor Zitron Australia Pty Ltd holds any compliance certifications.

Neither company holds any compliance certifications.

Neither VRV - A Chart Industries Company company nor Zitron Australia Pty Ltd company has publicly disclosed detailed information about the number of their subsidiaries.

VRV - A Chart Industries Company company employs more people globally than Zitron Australia Pty Ltd company, reflecting its scale as a Mechanical Or Industrial Engineering.

Neither VRV - A Chart Industries Company nor Zitron Australia Pty Ltd holds SOC 2 Type 1 certification.

Neither VRV - A Chart Industries Company nor Zitron Australia Pty Ltd holds SOC 2 Type 2 certification.

Neither VRV - A Chart Industries Company nor Zitron Australia Pty Ltd holds ISO 27001 certification.

Neither VRV - A Chart Industries Company nor Zitron Australia Pty Ltd holds PCI DSS certification.

Neither VRV - A Chart Industries Company nor Zitron Australia Pty Ltd holds HIPAA certification.

Neither VRV - A Chart Industries Company nor Zitron Australia Pty Ltd holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.

Published
Date
2025-11-26
Updated
Date
2025-11-26
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.

Published
Date
2025-11-26
Updated
Date
2025-11-26
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.

Published
Date
2025-11-26
Updated
Date
2025-11-26
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.

Published
Date
2025-11-26
Updated
Date
2025-11-26
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References
Description

Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.

Published
Date
2025-11-26
Updated
Date
2025-11-26
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References