Comparison Overview

WellSpace Health

VS

Allegheny Health Network

WellSpace Health

1820 J Street, Sacramento, CA, 95811, US
Last Update: 2025-03-05 (UTC)
Between 800 and 900
http://www.wellspacehealth.org

Strong

WellSpace Health believes that everyone deserves to be seen, no matter who you are, where you come from, where you work or what place you call home. We see you and are here for you. To that end, weโ€™ve committed ourselves to finding solutions for our communityโ€™s health and wellbeing to achieve regional health through high quality comprehensive care. Our focus has always been to offer a full range of quality medical care, dental care, mental health and behavioral health services, and enabling services to underserved people. We do this by placing ourselves within the communities we serve and employing outstanding healthcare professionals who are devoted to our mission. We are a Federally Qualified Health Center (FQHC) and are accredited by the Joint Commission for Ambulatory Care and Behavioral Health. Weโ€™re also certified by the Joint Commission as a Patient Centered Health Home and a Behavioral Health Home.

NAICS: 62
NAICS Definition: Health Care and Social Assistance
Employees: 532
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Allegheny Health Network

4800 Friendship Ave, Pittsburgh, Pennsylvania, 15224, US
Last Update: 2025-03-04 (UTC)

Strong

Between 800 and 900
http://www.ahn.org

Allegheny Health Network is an integrated health care delivery system serving the greater Western Pennsylvania region. More than 2,600 physicians and 22,000 employees serve the system's 14 hospitals as well as its ambulatory medical and surgery centers, Health + Wellness Pavilions, and hundreds of physician practice locations. AHN is a proud part of Highmark Health.

NAICS: 62
NAICS Definition: Health Care and Social Assistance
Employees: 10,878
Subsidiaries: 15
12-month incidents
0
Known data breaches
2
Attack type number
3

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/wellspace-health.jpeg
WellSpace Health
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
https://images.rankiteo.com/companyimages/allegheny-health-network.jpeg
Allegheny Health Network
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
Compliance Summary
WellSpace Health
100%
Compliance Rate
0/4 Standards Verified
Allegheny Health Network
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Hospitals and Health Care Industry Average (This Year)

No incidents recorded for WellSpace Health in 2025.

Incidents vs Hospitals and Health Care Industry Average (This Year)

No incidents recorded for Allegheny Health Network in 2025.

Incident History โ€” WellSpace Health (X = Date, Y = Severity)

WellSpace Health cyber incidents detection timeline including parent company and subsidiaries

Incident History โ€” Allegheny Health Network (X = Date, Y = Severity)

Allegheny Health Network cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/wellspace-health.jpeg
WellSpace Health
Incidents

No Incident

https://images.rankiteo.com/companyimages/allegheny-health-network.jpeg
Allegheny Health Network
Incidents

Date Detected: 06/2023
Type:Data Leak
Attack Vector: Account Takeover
Motivation: Financial Gain
Blog: Blog

Date Detected: 12/2022
Type:Breach
Attack Vector: External Hacking
Blog: Blog

Date Detected: 12/2022
Type:Cyber Attack
Attack Vector: Phishing
Blog: Blog

FAQ

Both WellSpace Health company and Allegheny Health Network company demonstrate a comparable AI risk posture, with strong governance and monitoring frameworks in place.

Allegheny Health Network company has historically faced a number of disclosed cyber incidents, whereas WellSpace Health company has not reported any.

In the current year, Allegheny Health Network company and WellSpace Health company have not reported any cyber incidents.

Neither Allegheny Health Network company nor WellSpace Health company has reported experiencing a ransomware attack publicly.

Allegheny Health Network company has disclosed at least one data breach, while WellSpace Health company has not reported such incidents publicly.

Allegheny Health Network company has reported targeted cyberattacks, while WellSpace Health company has not reported such incidents publicly.

Neither WellSpace Health company nor Allegheny Health Network company has reported experiencing or disclosing vulnerabilities publicly.

Allegheny Health Network company has more subsidiaries worldwide compared to WellSpace Health company.

Allegheny Health Network company employs more people globally than WellSpace Health company, reflecting its scale as a Hospitals and Health Care.

Latest Global CVEs (Not Company-Specific)

Description

A weakness has been identified in bftpd up to 6.2. Impacted is the function expand_groups of the file options.c of the component Configuration File Handler. Executing manipulation can lead to heap-based buffer overflow. It is possible to launch the attack on the local host. Attacks of this nature are highly complex. The exploitability is considered difficult. The exploit has been made available to the public and could be exploited. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-10-19
Updated
Date
2025-10-19
Risk Information
cvss2
Base: 3.5
Severity: HIGH
AV:L/AC:H/Au:S/C:P/I:P/A:P
cvss3
Base: 4.5
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 2.0
Severity: HIGH
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A security flaw has been discovered in LogicalDOC Community Edition up to 9.2.1. This issue affects some unknown processing of the file /frontend.jsp of the component Add Contact Page. Performing manipulation of the argument First Name/Last Name/Company/Address/Phone/Mobile results in cross site scripting. Remote exploitation of the attack is possible. The exploit has been released to the public and may be exploited. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-10-19
Updated
Date
2025-10-19
Risk Information
cvss2
Base: 4.0
Severity: LOW
AV:N/AC:L/Au:S/C:N/I:P/A:N
cvss3
Base: 3.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 5.1
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was identified in toeverything AFFiNE up to 0.24.1. This vulnerability affects unknown code of the component Avatar Upload Image Endpoint. Such manipulation leads to cross site scripting. The attack may be launched remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-10-19
Updated
Date
2025-10-19
Risk Information
cvss2
Base: 4.0
Severity: LOW
AV:N/AC:L/Au:S/C:N/I:P/A:N
cvss3
Base: 3.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 5.1
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was determined in givanz Vvveb up to 1.0.7.3. This affects the function Import of the file admin/controller/tools/import.php of the component Raw SQL Handler. This manipulation causes sql injection. The attack may be initiated remotely. The exploit has been publicly disclosed and may be utilized. Patch name: 52204b4a106b2fb02d16eee06a88a1f2697f9b35. It is recommended to apply a patch to fix this issue.

Published
Date
2025-10-19
Updated
Date
2025-10-19
Risk Information
cvss2
Base: 5.8
Severity: LOW
AV:N/AC:L/Au:M/C:P/I:P/A:P
cvss3
Base: 4.7
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.1
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability has been found in 70mai X200 up to 20251010. Affected by this vulnerability is an unknown functionality of the component HTTP Web Server. The manipulation leads to use of default credentials. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-10-19
Updated
Date
2025-10-19
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References