Comparison Overview

Westland Horticulture Ltd

VS

SC Johnson

Westland Horticulture Ltd

14 Granville Industrial Estate, Dungannon, County Tyrone, BT701NJ, GB
Last Update: 2025-03-07 (UTC)
Between 900 and 1000
https://www.gardenhealth.com

Excellent

Westland Horticulture is one of the leading horticultural companies in the UK creating unique and innovative gardening products. Established in 1990 in Northern Ireland, we have since grown in size and strength and now has over 800 employees, delivering a comprehensive portfolio of gardening and wild bird care brands to consumers across the UK and Republic of Ireland. Over the past 20 years, Westland Horticulture has revolutionised the gardening industry with unique and creative solutions to common gardening problems. By doing this we have raised our position in the marketplace and achieved many awards for our innovative designs. With growth and innovation at the root of everything we do, we have successfully developed a strong brand structure and are quick to incorporate key trends and lifestyle changes within our range of brands.

NAICS: 339
NAICS Definition:
Employees: 387
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

SC Johnson

1525 Howe Street, Racine, WI, 53403, US
Last Update: 2025-03-04 (UTC)

Strong

Between 800 and 900
http://www.scjohnson.com

We’re SC Johnson, a family company at work for a better world™. We are a leading manufacturer of household cleaning products and products for home storage, air care, pest control, shoe care and professional products. SC Johnson’s high-quality products and iconic brands include OFF!®, Raid®, Glade®, Windex®, Scrubbing Bubbles®, Ziploc®, Mrs. Meyer’s® Clean Day, method®, Autan®, Baygon®, Mr Muscle®, Duck®, Lysoform® and more, and are in homes, schools and businesses in virtually every country worldwide. We’re a fifth-generation, family-owned and led company with 13,000 employees and operations in 70 countries. Founded in 1886 and headquartered in Racine, Wisconsin, we believe that a more sustainable, healthier and transparent world that inspires people and creates opportunities isn't just possible – it's our responsibility. SC Johnson includes both SC Johnson Professional, providing solutions to healthcare, industrial and institutional markets, and SC Johnson Lifestyle Brands, a growing house of like-minded brands working together for bold, transformative growth. Learn more about SC Johnson on our LinkedIn “Life” tab, at https://scjohnson.com or https://jobs.scjohnson.com.

NAICS: 30
NAICS Definition: Manufacturing
Employees: 12,897
Subsidiaries: 4
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/westland-horticulture-ltd.jpeg
Westland Horticulture Ltd
ISO 27001
Not verified
SOC 2
Not verified
GDPR
No public badge
PCI DSS
No public badge
https://images.rankiteo.com/companyimages/scjohnson.jpeg
SC Johnson
ISO 27001
Not verified
SOC 2
Not verified
GDPR
No public badge
PCI DSS
No public badge
Compliance Summary
Westland Horticulture Ltd
100%
Compliance Rate
0/4 Standards Verified
SC Johnson
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Manufacturing Industry Average (This Year)

No incidents recorded for Westland Horticulture Ltd in 2025.

Incidents vs Manufacturing Industry Average (This Year)

No incidents recorded for SC Johnson in 2025.

Incident History — Westland Horticulture Ltd (X = Date, Y = Severity)

Westland Horticulture Ltd cyber incidents detection timeline including parent company and subsidiaries

Incident History — SC Johnson (X = Date, Y = Severity)

SC Johnson cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/westland-horticulture-ltd.jpeg
Westland Horticulture Ltd
Incidents

No Incident

https://images.rankiteo.com/companyimages/scjohnson.jpeg
SC Johnson
Incidents

No Incident

FAQ

Westland Horticulture Ltd company company demonstrates a stronger AI risk posture compared to SC Johnson company company, reflecting its advanced AI governance and monitoring frameworks.

Historically, SC Johnson company has disclosed a higher number of cyber incidents compared to Westland Horticulture Ltd company.

In the current year, SC Johnson company and Westland Horticulture Ltd company have not reported any cyber incidents.

Neither SC Johnson company nor Westland Horticulture Ltd company has reported experiencing a ransomware attack publicly.

Neither SC Johnson company nor Westland Horticulture Ltd company has reported experiencing a data breach publicly.

Neither SC Johnson company nor Westland Horticulture Ltd company has reported experiencing targeted cyberattacks publicly.

Neither Westland Horticulture Ltd company nor SC Johnson company has reported experiencing or disclosing vulnerabilities publicly.

SC Johnson company has more subsidiaries worldwide compared to Westland Horticulture Ltd company.

SC Johnson company employs more people globally than Westland Horticulture Ltd company, reflecting its scale as a Manufacturing.

Latest Global CVEs (Not Company-Specific)

Description

Better Auth is an authentication and authorization library for TypeScript. In versions prior to 1.3.26, unauthenticated attackers can create or modify API keys for any user by passing that user's id in the request body to the `api/auth/api-key/create` route. `session?.user ?? (authRequired ? null : { id: ctx.body.userId })`. When no session exists but `userId` is present in the request body, `authRequired` becomes false and the user object is set to the attacker-controlled ID. Server-only field validation only executes when `authRequired` is true (lines 280-295), allowing attackers to set privileged fields. No additional authentication occurs before the database operation, so the malicious payload is accepted. The same pattern exists in the update endpoint. This is a critical authentication bypass enabling full an unauthenticated attacker can generate an API key for any user and immediately gain complete authenticated access. This allows the attacker to perform any action as the victim user using the api key, potentially compromise the user data and the application depending on the victim's privileges. Version 1.3.26 contains a patch for the issue.

Published
Date
2025-10-09
Updated
Date
2025-10-09
Risk Information
cvss4
Base: 9.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Allstar is a GitHub App to set and enforce security policies. In versions prior to 4.5, a vulnerability in Allstar’s Reviewbot component caused inbound webhook requests to be validated against a hard-coded, shared secret. The value used for the secret token was compiled into the Allstar binary and could not be configured at runtime. In practice, this meant that every deployment using Reviewbot would validate requests with the same secret unless the operator modified source code and rebuilt the component - an expectation that is not documented and is easy to miss. All Allstar releases prior to v4.5 that include the Reviewbot code path are affected. Deployments on v4.5 and later are not affected. Those who have not enabled or exposed the Reviewbot endpoint are not exposed to this issue.

Published
Date
2025-10-09
Updated
Date
2025-10-09
Risk Information
cvss4
Base: 4.6
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Multiple cross-site scripting (XSS) vulnerabilities with Calendar events in Liferay Portal 7.4.3.35 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.5, 2023.Q3.1 through 2023.Q3.7, 7.4 update 35 through update 92, and 7.3 update 25 through update 36 allow remote attackers to inject arbitrary web script or HTML via a crafted payload injected into a user’s (1) First Name, (2) Middle Name or (3) Last Name text field.

Published
Date
2025-10-09
Updated
Date
2025-10-09
Risk Information
cvss4
Base: 4.8
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Python Social Auth is a social authentication/registration mechanism. In versions prior to 5.6.0, upon authentication, the user could be associated by e-mail even if the `associate_by_email` pipeline was not included. This could lead to account compromise when a third-party authentication service does not validate provided e-mail addresses or doesn't require unique e-mail addresses. Version 5.6.0 contains a patch. As a workaround, review the authentication service policy on e-mail addresses; many will not allow exploiting this vulnerability.

Published
Date
2025-10-09
Updated
Date
2025-10-09
Risk Information
cvss4
Base: 6.3
Severity: HIGH
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Confidential Containers's Trustee project contains tools and components for attesting confidential guests and providing secrets to them. In versions prior to 0.15.0, the attestation-policy endpoint didn't check if the kbs-client submitting the request was actually authenticated (had the right key). This allowed any kbs-client to actually change the attestation policy. Version 0.15.0 fixes the issue.

Published
Date
2025-10-09
Updated
Date
2025-10-09
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References