Comparison Overview

XIMEA - Imaging beyond the Standard.

VS

GPI / GPRO

XIMEA - Imaging beyond the Standard.

Am Mittelhafen 16, Münster, undefined, 48155, DE
Last Update: 2025-11-27
View Profile
Between 750 and 799
http://www.ximea.com

Imaging beyond the standard! XIMEA, with its 25 years of experience in the industry, develops, manufactures and distributes high-end industrial and scientific cameras, getting the best out of the latest sensors in the most compact design. Today, XIMEA provides standard and OEM cameras for numerous applications for example in the fields of medicine, astronomy, entertainment, security or agriculture. The portfolio spans from very compact board level cameras over hyperspectral imaging, high-resolution and high-speed cameras to embedded vision systems and multi-camera platforms which support over a hundred sensors in a single setup. All cameras and setups are manufactured with modern interfaces like USB3 and PCI Express. By combining the best technologies with the most compact designs, XIMEA’s cameras constantly incorporate state-of-the-art products that lift the bar for the competitors on the market. Innovation creates the technology for tomorrow by pushing the envelope today. That is our passion. That is us. XIMEA. Learn more about XIMEA and its innovative cameras at www.ximea.com

NAICS: None
NAICS Definition:
Employees: 53
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

GPI / GPRO

5252 East 36th Street North, Wichita, Kansas, 67220, US
Last Update: 2025-11-21
Between 750 and 799
http://www.greatplainsindustries.com

Great Plains Industries proudly manufactures GPI and GPRO products to serve fuel, agriculture, chemical, construction, mining, oil and gas, and other core markets. GPI is a brand with a strong legacy of fuel, oil, and chemical transfer pumps and meters. GPRO is a brand of fuel transfer pumps and meters made exclusively for commercial applications that demand a more robust, professional grade design. Great Plains Industries got its start in 1968 in Wichita, Kansas. The company has grown into a 178,000 sq. ft. headquarters in northeast Wichita where it manufacturers all GPI and GPRO products. The company portfolio expanded in 2013 with the acquisition of FLOMEC flow meters. FLOMEC products are strategically manufactured in both Sydney, Australia and Wichita, KS facilities. All three product lines have overlap in serving key markets like agriculture and oil & gas. GPI and GPRO products are engineered and assembled at Great Plains Industries in Wichita, KS, USA. Customers can contact Great Plains Industries or locate a distributor partner via the following options. GPI and GPRO product lines are represented by a global network of valued distributors and retail partners. Sydney, Australia: www.GPIpumps.com.au | +61 2 9540 4433 Wichita, KS, USA: www.GreatPlainsIndustries.com | 1-888-996-3837 | [email protected]

NAICS: None
NAICS Definition:
Employees: 54
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/ximea.jpeg
XIMEA - Imaging beyond the Standard.
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/great-plains-industries-inc-.jpeg
GPI / GPRO
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
XIMEA - Imaging beyond the Standard.
100%
Compliance Rate
0/4 Standards Verified
GPI / GPRO
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Industrial Automation Industry Average (This Year)

No incidents recorded for XIMEA - Imaging beyond the Standard. in 2025.

Incidents vs Industrial Automation Industry Average (This Year)

No incidents recorded for GPI / GPRO in 2025.

Incident History — XIMEA - Imaging beyond the Standard. (X = Date, Y = Severity)

XIMEA - Imaging beyond the Standard. cyber incidents detection timeline including parent company and subsidiaries

Incident History — GPI / GPRO (X = Date, Y = Severity)

GPI / GPRO cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/ximea.jpeg
XIMEA - Imaging beyond the Standard.
Incidents

No Incident

https://images.rankiteo.com/companyimages/great-plains-industries-inc-.jpeg
GPI / GPRO
Incidents

No Incident

FAQ

Both XIMEA - Imaging beyond the Standard. company and GPI / GPRO company demonstrate a comparable AI Cybersecurity Score, with strong governance and monitoring frameworks in place.

Historically, GPI / GPRO company has disclosed a higher number of cyber incidents compared to XIMEA - Imaging beyond the Standard. company.

In the current year, GPI / GPRO company and XIMEA - Imaging beyond the Standard. company have not reported any cyber incidents.

Neither GPI / GPRO company nor XIMEA - Imaging beyond the Standard. company has reported experiencing a ransomware attack publicly.

Neither GPI / GPRO company nor XIMEA - Imaging beyond the Standard. company has reported experiencing a data breach publicly.

Neither GPI / GPRO company nor XIMEA - Imaging beyond the Standard. company has reported experiencing targeted cyberattacks publicly.

Neither XIMEA - Imaging beyond the Standard. company nor GPI / GPRO company has reported experiencing or disclosing vulnerabilities publicly.

Neither XIMEA - Imaging beyond the Standard. nor GPI / GPRO holds any compliance certifications.

Neither company holds any compliance certifications.

Neither XIMEA - Imaging beyond the Standard. company nor GPI / GPRO company has publicly disclosed detailed information about the number of their subsidiaries.

GPI / GPRO company employs more people globally than XIMEA - Imaging beyond the Standard. company, reflecting its scale as a Industrial Automation.

Neither XIMEA - Imaging beyond the Standard. nor GPI / GPRO holds SOC 2 Type 1 certification.

Neither XIMEA - Imaging beyond the Standard. nor GPI / GPRO holds SOC 2 Type 2 certification.

Neither XIMEA - Imaging beyond the Standard. nor GPI / GPRO holds ISO 27001 certification.

Neither XIMEA - Imaging beyond the Standard. nor GPI / GPRO holds PCI DSS certification.

Neither XIMEA - Imaging beyond the Standard. nor GPI / GPRO holds HIPAA certification.

Neither XIMEA - Imaging beyond the Standard. nor GPI / GPRO holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.

Published
Date
2025-11-26
Updated
Date
2025-11-26
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.

Published
Date
2025-11-26
Updated
Date
2025-11-26
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.

Published
Date
2025-11-26
Updated
Date
2025-11-26
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.

Published
Date
2025-11-26
Updated
Date
2025-11-26
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References
Description

Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.

Published
Date
2025-11-26
Updated
Date
2025-11-26
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References