Albertsons Companies
Company Details
Linkedin ID:
albertsons
Employees number:
112,179
Number of followers:
245,841
NAICS:
43
Industry Type:
Homepage:
albertsonscompanies.com
IP Addresses:
0
Company ID:
ALB_3061356
Scan Status:
In-progress
Internal validation & live display
Multiple badges & continuous verification
Faster underwriting decisions
Albertsons Companies Vendor Cyber Rating & Cyber Score
albertsonscompanies.comAlbertsons Companies is one of the largest food and drug retailers in the United States, with over 2,200 stores in 34 states and the District of Columbia. Our well-known banners include Albertsons, Safeway, Vons, Jewel-Osco, Shaw's, Acme, Tom Thumb, Randalls, United Supermarkets, Pavilions, Star Market, Haggen, Carrs, Kings Food Markets, and Balducci's Food Lovers Market. We support our stores with 22 distribution centers and 19 manufacturing plants. Our 285,000 associates have a passion for great service and building lasting relationships with our customers. Through a companywide focus on innovation, we are continually enhancing our digital and product offerings, making it easy for customers to get what they need, wherever they are. Learn more about our Social Media Standards and Guidelines: https://www.albertsonscompanies.com/policies-and-disclosures/social-media-standards-and-guidelines/default.aspx
Albertsons Companies A.I CyberSecurity Scoring
Albertsons Companies Risk Score (AI oriented)Between 700 and 749
Albertsons Companies
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Albertsons Companies Global Score (TPRM)XXXX
Albertsons Companies
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Albertsons Companies Company CyberSecurity News & History
Past Incidents
4
Attack Types
2
Albertsons Companies, Inc.
Breach
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: The Maine Office of the Attorney General disclosed a data breach targeting Albertsons Companies, Inc. between December 19, 2023, and January 12, 2024, stemming from credential theft via a fraudulent website. The incident compromised the personal information of 457 individuals, including four Maine residents, with Social Security numbers (SSNs) among the exposed data. The breach was initiated through phishing or credential-harvesting tactics, allowing unauthorized access to sensitive employee or customer records. While the exact scope of the attack (e.g., whether it involved internal systems or third-party vulnerabilities) remains undisclosed, the exposure of SSNs a high-value target for identity theft and fraud elevates the incident’s gravity. Such data can facilitate financial fraud, tax fraud, or long-term identity exploitation, posing lasting risks to affected individuals. Albertsons, a major U.S. grocery retailer, faces potential regulatory scrutiny (e.g., under state data breach laws) and reputational damage, as customers and employees may question the company’s cybersecurity safeguards. The breach underscores persistent threats from credential-based attacks, highlighting the need for robust multi-factor authentication (MFA) and employee cybersecurity training to mitigate similar future risks.
Albertsons Companies, Inc.
Breach
Rankiteo Explanation
Attack with significant impact with internal employee data leaks
Description: On April 20, 2023, the California Office of the Attorney General reported that Albertsons Companies, Inc. experienced a data breach where an unauthorized third party accessed its systems and potentially removed personal information between December 22 and December 24, 2022. The types of compromised information may include names, but specific details are unspecified, and the number of individuals affected is currently unknown.
AB Acquisition LLC
Cyber Attack
Rankiteo Explanation
Attack limited on finance or reputation
Description: The California Office of the Attorney General disclosed a data breach notification from AB Acquisition LLC on September 29, 2014, involving an attempted criminal incident targeting payment card data across multiple store locations. While the breach exposed potential vulnerabilities in the company’s payment systems, investigations could not confirm whether any actual payment card data was stolen. The incident raised concerns over the security of customer financial information, particularly in retail environments where transactional data is frequently processed. The breach highlighted risks associated with criminal cyber intrusions aimed at intercepting or exfiltrating sensitive payment details, though the lack of confirmed data theft suggested that preventive measures or early detection may have mitigated the full impact. However, the event still posed reputational risks, as public disclosure of such incidents can erode customer trust and prompt regulatory scrutiny. The company was required to notify affected parties and implement corrective actions to strengthen payment system defenses, including monitoring for fraudulent activity linked to the exposed cards. While no direct financial losses or large-scale fraud were reported, the breach underscored the persistent threat of cybercriminals targeting retail payment infrastructures, necessitating ongoing vigilance and investment in cybersecurity protocols to prevent future exploits.
AB Acquisition LLC
Breach
Rankiteo Explanation
Attack limited on finance or reputation
Description: The California Office of the Attorney General reported that AB Acquisition LLC, operating stores including Albertsons, experienced unauthorized access to payment card data from June 22, 2014, to July 17, 2014. The breach potentially affected an unspecified number of customers, and an investigation was ongoing to determine whether cardholder data was stolen.
Albertsons Companies Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Albertsons Companies
Incidents vs Retail Industry Average (This Year)
No incidents recorded for Albertsons Companies in 2026.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Albertsons Companies in 2026.
Incident Types Albertsons Companies vs Retail Industry Avg (This Year)
No incidents recorded for Albertsons Companies in 2026.
Incident History — Albertsons Companies (X = Date, Y = Severity)
Albertsons Companies cyber incidents detection timeline including parent company and subsidiaries
Albertsons Companies Company Subsidiaries
Albertsons Companies is one of the largest food and drug retailers in the United States, with over 2,200 stores in 34 states and the District of Columbia. Our well-known banners include Albertsons, Safeway, Vons, Jewel-Osco, Shaw's, Acme, Tom Thumb, Randalls, United Supermarkets, Pavilions, Star Market, Haggen, Carrs, Kings Food Markets, and Balducci's Food Lovers Market. We support our stores with 22 distribution centers and 19 manufacturing plants. Our 285,000 associates have a passion for great service and building lasting relationships with our customers. Through a companywide focus on innovation, we are continually enhancing our digital and product offerings, making it easy for customers to get what they need, wherever they are. Learn more about our Social Media Standards and Guidelines: https://www.albertsonscompanies.com/policies-and-disclosures/social-media-standards-and-guidelines/default.aspx
Loading...
Albertsons Companies Similar Companies
Target is one of the world’s most recognized brands — and one of America’s leading retailers — known for bringing joy to everyday life. We create meaningful experiences for our guests by combining value, inspiration and innovation in ways no one else can. Beyond our stores and digital experiences, w
noon
noon is a digital ecosystem of products and services that are built in the region. Our vision is to become the engine of efficiency and convenience for the people we serve. We will elevate the quality of life by inspiring people with what we built and how we built it. Starting in 2017, noon is now
Tupperware
Founded in 1946, Tupperware's signature container created the modern food storage category that revolutionized the way the world stores, serves and prepares food. Today, we continue to innovate for the benefit of people and our planet by designing innovative, functional and environmentally responsib
PT Lion Super Indo
Sejak tahun 1997, Super Indo telah bertumbuh dan berkembang di Indonesia melalui kemitraan bersama Ahold Delhaize yang berasal dari Belanda dan Salim Group dari Indonesia. Didukung lebih dari 10,000 karyawan* yang terlatih, Super Indo berhasil menyediakan berbagai macam barang kebutuhan sehari-hari
Ace Hardware Corporation
Ace Hardware is the largest retailer-owned hardware cooperative in the world with over 5,800 locally owned and operated hardware stores in approximately 70 countries. Headquartered in Oak Brook, Ill., Ace and its subsidiaries operate an expansive network of distribution centers in the U.S. and have
Migros Ticaret
Türkiye'de modern perakende sektörünün öncülüğünü yapmakta olan Migros günümüzde çok geniş kullanım alanına sahip mağazalarında, gıda ve ihtiyaç maddelerinin yanı sıra kırtasiye, züccaciye, beyaz eşya, kitap ve konfeksiyon gibi bölümleriyle hemen hemen tüm müşteri gereksinimlerini karşılamaktadır.
Spencer's
We are a lifestyle retail company with two unique brands located throughout the U.S., Canada, and online. Our Home Office is located just minutes from the beach in Egg Harbor Township, NJ. At Spencer's and Spirit Halloween, we do the right thing always - integrity, fairness, respect, and transparen
H-E-B
H-E-B is headquartered in San Antonio, Texas with approximately $46 billion in revenue and 160,000+ Partners. Founded in 1905, H-E-B operates more than 435 stores in a number of formats, including H-E-B, Joe V’s Smart Shop, Central Market, Mi Tienda, and Favor. There are truly aisles and aisles of
Tractor Supply Company
For more than 85 years, Tractor Supply has been passionate about serving the needs of recreational farmers, ranchers, homeowners, gardeners, pet enthusiasts and all those who enjoy living Life Out Here. Tractor Supply is the largest rural lifestyle retailer in the U.S., ranking 296 on the Fortune 50
.png)
Albertsons Companies CyberSecurity News
March 08, 2026 08:00 AM
Albertsons Adds Brian Rice To Board To Deepen Digital Focus
Albertsons Companies (NYSE:ACI) has appointed Brian Rice to its Board of Directors. Rice is described as a seasoned digital and technology...
March 08, 2026 08:00 AM
A Look At Albertsons Companies (ACI) Valuation As Tech Leader Brian Rice Joins The Board
Albertsons Companies (ACI) shares are in focus after the retailer expanded its board to 11 members and added Brian Rice, a veteran...
March 08, 2026 08:00 AM
Is Albertsons Companies (ACI) Pricing Reflect Recent Grocery Market Headlines Accurately
If you are wondering whether Albertsons Companies' current share price reflects its true worth, you are not alone.
March 08, 2026 08:00 AM
How The Albertsons Companies (ACI) Narrative Is Shifting As Price Targets And Expectations Reset
Albertsons Companies' modelled fair value holds steady at US$22.0 per share, even as some analysts reduce their published price targets into...
March 03, 2026 08:00 AM
List of Fortune 500 Chief Information Security Officers
Every one of our nation's biggest businesses has a cybersecurity leader. Scroll down the list to see who's who.
February 27, 2026 03:40 PM
Albertsons Adds McDonald’s Tech Exec to Board
Albertsons Cos. has appointed Brian Rice to its board of directors, effective Feb. 25. The company's board has now expanded to 11 members.
February 27, 2026 08:00 AM
Albertsons® Companies Appoints Brian Rice to Board of Directors
Seasoned Global Technology Leader Brings Deep Digital, Data and AI Expertise Albertsons® Companies, Inc. (NYSE: ACI) (“the Company”) today...
February 27, 2026 08:00 AM
Albertsons adds McDonald’s CIO Brian Rice to board
BOISE, Idaho - Albertsons Companies (NYSE:ACI) appointed Brian Rice to its board of directors on Tuesday, expanding the board to 11 members,...
February 27, 2026 08:00 AM
Albertsons Cos. Appoints Rice To Board Of Directors
Albertsons Companies appointed Brian Rice to its board of directors effective Feb. 25, expanding the board to 11 members.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Albertsons Companies CyberSecurity History Information
Official Website of Albertsons Companies
The official website of Albertsons Companies is http://www.albertsonscompanies.com.
Albertsons Companies’s AI-Generated Cybersecurity Score
According to Rankiteo, Albertsons Companies’s AI-generated cybersecurity score is 723, reflecting their Moderate security posture.
How many security badges does Albertsons Companies’ have ?
According to Rankiteo, Albertsons Companies currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Has Albertsons Companies been affected by any supply chain cyber incidents ?
According to Rankiteo, Albertsons Companies has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
Does Albertsons Companies have SOC 2 Type 1 certification ?
According to Rankiteo, Albertsons Companies is not certified under SOC 2 Type 1.
Does Albertsons Companies have SOC 2 Type 2 certification ?
According to Rankiteo, Albertsons Companies does not hold a SOC 2 Type 2 certification.
Does Albertsons Companies comply with GDPR ?
According to Rankiteo, Albertsons Companies is not listed as GDPR compliant.
Does Albertsons Companies have PCI DSS certification ?
According to Rankiteo, Albertsons Companies does not currently maintain PCI DSS compliance.
Does Albertsons Companies comply with HIPAA ?
According to Rankiteo, Albertsons Companies is not compliant with HIPAA regulations.
Does Albertsons Companies have ISO 27001 certification ?
According to Rankiteo,Albertsons Companies is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Albertsons Companies
Albertsons Companies operates primarily in the Retail industry.
Number of Employees at Albertsons Companies
Albertsons Companies employs approximately 112,179 people worldwide.
Subsidiaries Owned by Albertsons Companies
Albertsons Companies presently has no subsidiaries across any sectors.
Albertsons Companies’s LinkedIn Followers
Albertsons Companies’s official LinkedIn profile has approximately 245,841 followers.
NAICS Classification of Albertsons Companies
Albertsons Companies is classified under the NAICS code 43, which corresponds to Retail Trade.
Albertsons Companies’s Presence on Crunchbase
Yes, Albertsons Companies has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/albertsons-companies.
Albertsons Companies’s Presence on LinkedIn
Yes, Albertsons Companies maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/albertsons.
Cybersecurity Incidents Involving Albertsons Companies
As of April 02, 2026, Rankiteo reports that Albertsons Companies has experienced 4 cybersecurity incidents.
Number of Peer and Competitor Companies
Albertsons Companies has an estimated 15,730 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Albertsons Companies ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach and Cyber Attack.
How does Albertsons Companies detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an communication strategy with public disclosure via maine ag office, and law enforcement notified with yes (california office of the attorney general), and communication strategy with public disclosure (via california ag)..
Incident Details
Can you provide details on each incident ?
Title: Albertsons Companies, Inc. Data Breach
Description: An unauthorized third party accessed Albertsons Companies, Inc. systems and potentially removed personal information between December 22 and December 24, 2022.
Date Detected: 2023-04-20
Date Publicly Disclosed: 2023-04-20
Type: Data Breach
Threat Actor: Unauthorized third party
Title: AB Acquisition LLC Data Breach
Description: The California Office of the Attorney General reported that AB Acquisition LLC, operating stores including Albertsons, experienced unauthorized access to payment card data from June 22, 2014, to July 17, 2014. The breach potentially affected an unspecified number of customers, and an investigation was ongoing to determine whether cardholder data was stolen.
Date Detected: 2014-06-22
Type: Data Breach
Attack Vector: Unauthorized Access
Title: Albertsons Companies, Inc. Data Breach (2023-2024)
Description: The Maine Office of the Attorney General reported a data breach involving Albertsons Companies, Inc. The breach occurred between December 19, 2023, and January 12, 2024, due to credential theft from a fraudulent website, affecting a total of 457 individuals, including 4 residents in Maine. Personal information potentially compromised includes Social Security numbers.
Date Publicly Disclosed: 2024-02-09
Type: Data Breach
Attack Vector: Credential Theft (Fraudulent Website)
Title: Data Breach at AB Acquisition LLC Involving Payment Card Data
Description: The California Office of the Attorney General reported a data breach notification from AB Acquisition LLC on September 29, 2014, regarding an attempted criminal incident involving payment card data. The breach potentially affected stores in several states, but it has not been determined whether any payment card data was actually stolen.
Date Publicly Disclosed: 2014-09-29
Type: Data Breach (Attempted)
Motivation: Criminal (Potential Theft of Payment Card Data)
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
How does the company identify the attack vectors used in incidents ?
Identification of Attack Vectors: The company identifies the attack vectors used in incidents through Fraudulent Website (Credential Theft).
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach ALB912072525
Data Compromised: Names
Incident : Data Breach ALB715072825
Data Compromised: Payment Card Data
Payment Information Risk: High
Incident : Data Breach ALB024090625
Data Compromised: Social security numbers
Identity Theft Risk: High (SSNs compromised)
Incident : Data Breach (Attempted) ALB033090625
Data Compromised: Potential (Payment Card Data)
Identity Theft Risk: Potential (if payment card data was stolen)
Payment Information Risk: Potential
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Names, , Payment Card Data, Personal Information, and Payment Card Data (Potential).
Which entities were affected by each incident ?
Incident : Data Breach ALB912072525
Entity Name: Albertsons Companies, Inc.
Entity Type: Corporation
Industry: Retail
Incident : Data Breach ALB715072825
Entity Name: AB Acquisition LLC
Entity Type: Retail
Industry: Grocery
Location: California
Customers Affected: Unspecified
Incident : Data Breach ALB024090625
Entity Name: Albertsons Companies, Inc.
Entity Type: Corporation
Industry: Retail (Grocery)
Location: United States
Customers Affected: 457
Incident : Data Breach ALB024090625
Entity Name: Maine Office of the Attorney General
Entity Type: Government Agency
Industry: Legal/Regulatory
Location: Maine, United States
Incident : Data Breach (Attempted) ALB033090625
Entity Name: AB Acquisition LLC
Entity Type: Retail (Likely, given stores in multiple states)
Industry: Retail
Location: Multiple states (USA)
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Data Breach ALB024090625
Communication Strategy: Public disclosure via Maine AG office
Incident : Data Breach (Attempted) ALB033090625
Law Enforcement Notified: Yes (California Office of the Attorney General)
Communication Strategy: Public Disclosure (via California AG)
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach ALB912072525
Type of Data Compromised: Names
Incident : Data Breach ALB715072825
Type of Data Compromised: Payment Card Data
Number of Records Exposed: Unspecified
Sensitivity of Data: High
Incident : Data Breach ALB024090625
Type of Data Compromised: Personal information
Number of Records Exposed: 457
Sensitivity of Data: High (SSNs)
Personally Identifiable Information: Social Security numbers
Incident : Data Breach (Attempted) ALB033090625
Type of Data Compromised: Payment Card Data (Potential)
Sensitivity of Data: High (Payment Card Data)
Data Exfiltration: Unconfirmed (Attempted)
Regulatory Compliance
Were there any regulatory violations and fines imposed for each incident ?
Incident : Data Breach ALB024090625
Regulatory Notifications: Maine Office of the Attorney General
Incident : Data Breach (Attempted) ALB033090625
Regulatory Notifications: California Office of the Attorney General
References
Where can I find more information about each incident ?
Incident : Data Breach ALB912072525
Source: California Office of the Attorney General
Date Accessed: 2023-04-20
Incident : Data Breach ALB715072825
Source: California Office of the Attorney General
Incident : Data Breach ALB024090625
Source: Maine Office of the Attorney General
Date Accessed: 2024-02-09
Incident : Data Breach (Attempted) ALB033090625
Source: California Office of the Attorney General
Date Accessed: 2014-09-29
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: California Office of the Attorney GeneralDate Accessed: 2023-04-20, and Source: California Office of the Attorney General, and Source: Maine Office of the Attorney GeneralDate Accessed: 2024-02-09, and Source: California Office of the Attorney GeneralDate Accessed: 2014-09-29.
Investigation Status
What is the current status of the investigation for each incident ?
Incident : Data Breach ALB715072825
Investigation Status: Ongoing
Incident : Data Breach (Attempted) ALB033090625
Investigation Status: Ongoing (as of 2014-09-29; no confirmation if data was stolen)
How does the company communicate the status of incident investigations to stakeholders ?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through Public disclosure via Maine AG office and Public Disclosure (via California AG).
Initial Access Broker
How did the initial access broker gain entry for each incident ?
Incident : Data Breach ALB024090625
Entry Point: Fraudulent Website (Credential Theft)
Incident : Data Breach (Attempted) ALB033090625
High Value Targets: Payment Card Data
Data Sold on Dark Web: Payment Card Data
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident ?
Incident : Data Breach ALB024090625
Root Causes: Credential theft via fraudulent website
Additional Questions
General Information
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident was an Unauthorized third party.
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2023-04-20.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2014-09-29.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were Names, , Payment Card Data, Social Security numbers, and Potential (Payment Card Data).
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Potential (Payment Card Data), Names, Payment Card Data and Social Security numbers.
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 457.0.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident are Maine Office of the Attorney General and California Office of the Attorney General.
Investigation Status
What is the current status of the most recent investigation ?
Current Status of Most Recent Investigation: The current status of the most recent investigation is Ongoing.
Initial Access Broker
What was the most recent entry point used by an initial access broker ?
Most Recent Entry Point: The most recent entry point used by an initial access broker was an Fraudulent Website (Credential Theft).
.png)
Latest Global CVEs (Not Company-Specific)
Description
A vulnerability was found in Nothings stb up to 1.26. Impacted is the function stbtt_InitFont_internal in the library stb_truetype.h of the component TTF File Handler. Performing a manipulation results in out-of-bounds read. Remote exploitation of the attack is possible. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.
Risk Information
cvss2
Base: 5.0
Severity: LOW
AV:N/AC:L/Au:N/C:N/I:N/A:P
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read in VS6ComFile!get_macro_mem_COM. Opening a crafted V7 file may lead to information disclosure from the affected product.
Risk Information
cvss3
Base: 7.8
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
cvss4
Base: 8.4
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
V-SFT versions 6.2.10.0 and prior contain a stack-based buffer overflow in VS6ComFile!CSaveData::_conv_AnimationItem. Opening a crafted V7 file may lead to arbitrary code execution on the affected product.
Risk Information
cvss3
Base: 7.8
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
cvss4
Base: 8.4
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6MemInIF!set_temp_type_default. Opening a crafted V7 file may lead to information disclosure from the affected product.
Risk Information
cvss3
Base: 7.8
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
cvss4
Base: 8.4
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6ComFile!load_link_inf. Opening a crafted V7 file may lead to information disclosure from the affected product.
Risk Information
cvss3
Base: 7.8
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
cvss4
Base: 8.4
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=albertsons' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
