Comparison Overview

Zafesoft Inc.

51 E Campbell Ave, Campbell, California, 95008, US

Last Update: 2025-03-10 (UTC)

Between 900 and 1000

https://www.zafesoft.com

Excellent

Is your information secure outside your company? Can you secure, control and track your sensitive information, online and offline? Zafesoft provides the next generation of information security. It provides character level security that travels with the character, and all digital derivatives made from it. So the original and all its derivatives are secure, anywhere in the world. 'Zafed' information can be shared in a "view only" mode OR with "edit" policies. Screen scrape and print screen are blocked (including Snagit etc.). The solution is transparent to the end user, and easy to deploy. The secured content is never moved to any CLOUD, so it is secure, under control and tracked. It is secure in a a cloud if you place it there (Dropbox, Salesforce etc.) Unauthorized users can never access zafed content (secure from intentional or accidental loss). Information access can be revoked from ex-employees. Hospitals get full HIPAA compliance for their protected healthcare information. Manufacturing companies can secure their designs (PDF etc.) from piracy, and prevent copies from saturating the market to maximize revenue. Secure financial information can be shared and then expired as necessary. Sensitive information can be expired, when a collaboration terminates.

NAICS: 511

NAICS Definition:

Employees: 2

Subsidiaries: 0

12-month incidents

0

Known data breaches

0

Attack type number

0

Pitney Bowes

3001 Summer Street, None, Stamford, CT, US, 06926

Last Update: 2025-08-21 (UTC)

Strong

Between 800 and 900

http://www.pitneybowes.com/us

Pitney Bowes is a technology-driven products and services company that provides SaaS shipping solutions, mailing innovation, and financial services to clients around the world – including more than 90 percent of the Fortune 500. Small businesses to large enterprises, and government entities rely on Pitney Bowes to reduce the complexity of sending mail and parcels. For additional information, visit Pitney Bowes at www.pitneybowes.com.

NAICS: 5112

NAICS Definition: Software Publishers

Employees: 12,875

Subsidiaries: 1

12-month incidents

0

Known data breaches

0

Attack type number

2

Zafesoft Inc.

—

ISO 27001

Not verified

—

SOC 2

Not verified

—

GDPR

No public badge

—

PCI DSS

No public badge

Pitney Bowes

—

ISO 27001

Not verified

—

SOC 2

Not verified

—

GDPR

No public badge

—

PCI DSS

No public badge

Incidents vs Software Development Industry Average (This Year)

No incidents recorded for Zafesoft Inc. in 2025.

Incidents vs Software Development Industry Average (This Year)

No incidents recorded for Pitney Bowes in 2025.

Incident History — Zafesoft Inc. (X = Date, Y = Severity)

Zafesoft Inc. cyber incidents detection timeline including parent company and subsidiaries

Incident History — Pitney Bowes (X = Date, Y = Severity)

Pitney Bowes cyber incidents detection timeline including parent company and subsidiaries

Zafesoft Inc.

Incidents

No Incident

Pitney Bowes

Incidents

Date Detected: 05/2020

Type:Ransomware

Motivation: Financial

Blog: Blog

Date Detected: 10/2019

Type:Malware

Blog: Blog

Zafesoft Inc. company company demonstrates a stronger AI risk posture compared to Pitney Bowes company company, reflecting its advanced AI governance and monitoring frameworks.

Pitney Bowes company has historically faced a number of disclosed cyber incidents, whereas Zafesoft Inc. company has not reported any.

In the current year, Pitney Bowes company and Zafesoft Inc. company have not reported any cyber incidents.

Pitney Bowes company has confirmed experiencing a ransomware attack, while Zafesoft Inc. company has not reported such incidents publicly.

Neither Pitney Bowes company nor Zafesoft Inc. company has reported experiencing a data breach publicly.

Neither Pitney Bowes company nor Zafesoft Inc. company has reported experiencing targeted cyberattacks publicly.

Neither Zafesoft Inc. company nor Pitney Bowes company has reported experiencing or disclosing vulnerabilities publicly.

Pitney Bowes company has more subsidiaries worldwide compared to Zafesoft Inc. company.

Pitney Bowes company employs more people globally than Zafesoft Inc. company, reflecting its scale as a Software Development.

Description

Mastra is a Typescript framework for building AI agents and assistants. Versions 0.13.8 through 0.13.20-alpha.0 are vulnerable to a Directory Traversal attack that results in the disclosure of directory listings. The code contains a security check to prevent path traversal for reading file contents, but this check is effectively bypassed by subsequent logic that attempts to find directory suggestions. An attacker can leverage this flaw to list the contents of arbitrary directories on the user's filesystem, including the user's home directory, exposing sensitive information about the file system's structure. This issue is fixed in version 0.13.20.

Published

Date

2025-10-03

Updated

Date

2025-10-03

Risk Information

cvss3

Base: 6.5

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

References

Description

KUNO CMS is a fully deployable full-stack blog application. Versions 1.3.13 and below contain validation flaws in its file upload functionality that can be exploited for stored XSS. The upload endpoint only validates file types based on Content-Type headers, lacks file content analysis and extension whitelist restrictions, allowing attackers to upload SVG files containing malicious scripts (disguised as images). When users access the uploaded resource pages, arbitrary JavaScript executes in their browsers. This issue is fixed in version 1.3.14.

Published

Date

2025-10-03

Updated

Date

2025-10-03

Risk Information

cvss3

Base: 5.4

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

References

Description

Minecraft RCON Terminal is a VS Code extension that streamlines Minecraft server management. Versions 0.1.0 through 2.0.6 stores passwords using VS Code's configuration API which writes to settings.json in plaintext. This issue is fixed in version 2.1.0.

Published

Date

2025-10-03

Updated

Date

2025-10-03

Risk Information

cvss4

Base: 6.6

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

Anyquery is an SQL query engine built on top of SQLite. Versions 0.4.3 and below allow attackers who have already gained access to localhost, even with low privileges, to use the http server through the port unauthenticated, and access private integration data like emails, without any warning of a foreign login from the provider. This issue is fixed in version 0.4.4.

Published

Date

2025-10-03

Updated

Date

2025-10-03

Risk Information

cvss3

Base: 7.7

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

References

Description

DataChain is a Python-based AI-data warehouse for transforming and analyzing unstructured data. Versions 0.34.1 and below allow for deseriaization of untrusted data because of the way the DataChain library reads serialized objects from environment variables (such as DATACHAIN__METASTORE and DATACHAIN__WAREHOUSE) in the loader.py module. An attacker with the ability to set these environment variables can trigger code execution when the application loads. This issue is fixed in version 0.34.2.

Published

Date

2025-10-03

Updated

Date

2025-10-03

Risk Information

cvss3

Base: 2.5

Severity: HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N

References

Comparison Overview

Zafesoft Inc.

VS

Pitney Bowes

Zafesoft Inc.

Pitney Bowes

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Software Development Industry Average (This Year)

Incidents vs Software Development Industry Average (This Year)

Incident History — Zafesoft Inc. (X = Date, Y = Severity)

Incident History — Pitney Bowes (X = Date, Y = Severity)

Notable Incidents

No Incident

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2025-61685

Risk Information

CVE-2025-61681

Risk Information

CVE-2025-61680

Risk Information

CVE-2025-61679

Risk Information

CVE-2025-61677

Risk Information

Comparison Overview

Zafesoft Inc.

VS

Pitney Bowes

Zafesoft Inc.

Pitney Bowes

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Software Development Industry Average (This Year)

Incidents vs Software Development Industry Average (This Year)

Incident History — Zafesoft Inc. (X = Date, Y = Severity)

Incident History — Pitney Bowes (X = Date, Y = Severity)

Notable Incidents

No Incident

🔒 Incident : Ransomware PIT1930291222

🔒 Incident : Malware PIT24917423

FAQ

Between Zafesoft Inc. company and Pitney Bowes company, which one has the best A.I. risk score?

Between Zafesoft Inc. company and Pitney Bowes company, which one has experienced more cyber incidents in the past?

Between Zafesoft Inc. company and Pitney Bowes company, which one has experienced more cyber incidents this year?

Between Zafesoft Inc. company and Pitney Bowes company, which one has experienced at least one ransomware attack?

Between Zafesoft Inc. company and Pitney Bowes company, which one has experienced at least one data breach?

Between Zafesoft Inc. company and Pitney Bowes company, which one has experienced at least one targeted cyberattack?

Between Zafesoft Inc. company and Pitney Bowes company, which one has experienced at least one vulnerability?

Between Zafesoft Inc. company and Pitney Bowes company, which one has the most subsidiaries?

Between Zafesoft Inc. company and Pitney Bowes company, which one has the largest number of employees?

Latest Global CVEs (Not Company-Specific)

CVE-2025-61685

Risk Information

CVE-2025-61681

Risk Information

CVE-2025-61680

Risk Information

CVE-2025-61679

Risk Information

CVE-2025-61677

Risk Information