Comparison Overview

Zaans Medisch Centrum

VS

CommonSpirit Health

Zaans Medisch Centrum

Koningin Julianaplein 58 Zaandam, Noord-Holland 1502 DV, NL
Last Update: 2025-03-14 (UTC)
Between 800 and 900
https://www.zaansmedischcentrum.nl

Strong

We zijn een menselijk, sfeervol Zaans ziekenhuis. Het Zaans Medisch Centrum is hรƒยฉt ziekenhuis voor de inwoners van Zaanstad en wijde omgeving. Al meer dan 100 jaar staan wij u bij met goede medische zorg. Zowel in de mooie momenten van het leven, bijvoorbeeld bij een geboorte, als in moeilijke tijden van ziek zijn.

NAICS: 62
NAICS Definition:
Employees: 1,001-5,000
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

CommonSpirit Health

Last Update: 2024-08-10 (UTC)

Strong

Between 800 and 900
http://www.commonspirit.careers

Two legacies of caring. One ministry of change. CommonSpirit Health is a non-pro๏ฌt, Catholic health system dedicated to advancing health for all people. With approximately 175,000 employees and 25,000 physicians and advanced practice clinicians, CommonSpirit operates 140 hospitals and more than 2,200 care centers serving sites across 24 states. Our commitment to serving the common good is delivered through the dedicated work of thousands of physicians, advanced practice clinicians, nurses, and staff; through clinical excellence delivered across a system of hospitals and other care centers, and accessible to nearly one in four U.S. residents; and through more than $4 billion annually in charity care, community benefits, and government program services. The CommonSpirit name was inspired by scripture: "Now to each one the manifestation of the Spirit is given for the common good." Those words motivate and guide us every day. They celebrate the healing gift of compassion that God gives to us all, and they remind us of our calling to serve the common good. Learn more at commonspirit.org.

NAICS: 62
NAICS Definition: Health Care and Social Assistance
Employees: 32,542
Subsidiaries: 15
12-month incidents
0
Known data breaches
9
Attack type number
4

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/zaans-medisch-centrum.jpeg
Zaans Medisch Centrum
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
https://images.rankiteo.com/companyimages/commonspirithealth.jpeg
CommonSpirit Health
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
Compliance Summary
Zaans Medisch Centrum
100%
Compliance Rate
0/4 Standards Verified
CommonSpirit Health
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Hospitals and Health Care Industry Average (This Year)

No incidents recorded for Zaans Medisch Centrum in 2025.

Incidents vs Hospitals and Health Care Industry Average (This Year)

No incidents recorded for CommonSpirit Health in 2025.

Incident History โ€” Zaans Medisch Centrum (X = Date, Y = Severity)

Zaans Medisch Centrum cyber incidents detection timeline including parent company and subsidiaries

Incident History โ€” CommonSpirit Health (X = Date, Y = Severity)

CommonSpirit Health cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/zaans-medisch-centrum.jpeg
Zaans Medisch Centrum
Incidents

No Incident

https://images.rankiteo.com/companyimages/commonspirithealth.jpeg
CommonSpirit Health
Incidents

Date Detected: 9/2025
Type:Breach
Blog: Blog

Date Detected: 01/2023
Type:Breach
Blog: Blog

Date Detected: 10/2022
Type:Cyber Attack
Blog: Blog

FAQ

Both Zaans Medisch Centrum company and CommonSpirit Health company demonstrate a comparable AI risk posture, with strong governance and monitoring frameworks in place.

CommonSpirit Health company has historically faced a number of disclosed cyber incidents, whereas Zaans Medisch Centrum company has not reported any.

In the current year, CommonSpirit Health company has reported more cyber incidents than Zaans Medisch Centrum company.

CommonSpirit Health company has confirmed experiencing a ransomware attack, while Zaans Medisch Centrum company has not reported such incidents publicly.

CommonSpirit Health company has disclosed at least one data breach, while Zaans Medisch Centrum company has not reported such incidents publicly.

CommonSpirit Health company has reported targeted cyberattacks, while Zaans Medisch Centrum company has not reported such incidents publicly.

Neither Zaans Medisch Centrum company nor CommonSpirit Health company has reported experiencing or disclosing vulnerabilities publicly.

CommonSpirit Health company has more subsidiaries worldwide compared to Zaans Medisch Centrum company.

CommonSpirit Health company employs more people globally than Zaans Medisch Centrum company, reflecting its scale as a Hospitals and Health Care.

Latest Global CVEs (Not Company-Specific)

Description

An issue was discovered in chinabugotech hutool before 5.8.4 allowing attackers to execute arbitrary expressions that lead to arbitrary method invocation and potentially remote code execution (RCE) via the QLExpressEngine class.

Published
Date
2025-09-25
Updated
Date
2025-09-25
References
Description

A weakness has been identified in JeecgBoot up to 3.8.2. The impacted element is an unknown function of the file /sys/role/exportXls. This manipulation causes improper authorization. It is possible to initiate the attack remotely. The exploit has been made available to the public and could be exploited. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-09-25
Updated
Date
2025-09-25
Risk Information
cvss2
Base: 4.0
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:N/A:N
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A security flaw has been discovered in JeecgBoot up to 3.8.2. The affected element is an unknown function of the file /sys/user/exportXls of the component Filter Handler. The manipulation results in improper authorization. The attack may be performed from remote. The exploit has been released to the public and may be exploited. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-09-25
Updated
Date
2025-09-25
Risk Information
cvss2
Base: 4.0
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:N/A:N
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was identified in JeecgBoot up to 3.8.2. Impacted is an unknown function of the file /sys/tenant/deleteBatch. The manipulation of the argument ids leads to improper authorization. The attack is possible to be carried out remotely. The complexity of an attack is rather high. The exploitability is considered difficult. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-09-25
Updated
Date
2025-09-25
Risk Information
cvss2
Base: 2.1
Severity: HIGH
AV:N/AC:H/Au:S/C:P/I:N/A:N
cvss3
Base: 3.1
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
cvss4
Base: 2.3
Severity: HIGH
CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was determined in JeecgBoot up to 3.8.2. This issue affects some unknown processing of the file /api/getDepartUserList. Executing manipulation of the argument departId can lead to improper authorization. The attack can be executed remotely. This attack is characterized by high complexity. The exploitability is assessed as difficult. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-09-25
Updated
Date
2025-09-25
Risk Information
cvss2
Base: 2.1
Severity: HIGH
AV:N/AC:H/Au:S/C:P/I:N/A:N
cvss3
Base: 3.1
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
cvss4
Base: 2.3
Severity: HIGH
CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References