Comparison Overview

Cartier

Route des Biches 10, Meyrin, CH, CH, 1217

Last Update: 2026-04-01

Between 650 and 699

http://www.cartier.com

A reference in the world of luxury, Cartier, whose name is synonymous with open-mindedness and curiosity, stands out with its creations and finds beauty wherever it may lie. The Maison has several areas of expression. From jewelry to high jewelry, from watchmaking to fragrances and leather goods and accessories, Cartier's creations symbolize the convergence between exceptional craftsmanship and a timeless signature. Santos de Cartier and Tank watches, Trinity ring, Love and Juste un Clou bracelets, Panthère de Cartier and Ballon Bleu designs are all born from a unique vision and a singular style.

NAICS: 4483

NAICS Definition: Jewelry, Luggage, and Leather Goods Stores

Employees: 11,164

Subsidiaries: 0

12-month incidents

0

Known data breaches

1

Attack type number

2

View Profile

Hermès

24, rue du Faubourg-Saint-Honoré, Paris, 75008, FR

Last Update: 2026-03-29

Between 800 and 849

https://talents.hermes.com/fr/sites/CX

A creator, artisan and seller of high-quality objects since 1837, Hermès is an independent, family-owned French house that employs more than 16,600 people worldwide. Driven by its permanent entrepreneurial spirit and consistently high standards, Hermès cultivates the freedom and autonomy of each individual through responsible management. The company perpetuates the transmission of exceptional know-how through strong territorial presence that respects people and nature, a source of exceptional materials. Sixteen artisanal métiers nurture the creativity of the house, whose collections are presented in over 300 stores around the world.

NAICS: 4483

NAICS Definition: Jewelry, Luggage, and Leather Goods Stores

Employees: 18,741

Subsidiaries: 1

12-month incidents

0

Known data breaches

0

Attack type number

0

Cartier

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

https://images.rankiteo.com/companyimages/hermes-group.jpeg

Hermès

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Retail Luxury Goods and Jewelry Industry Average (This Year)

No incidents recorded for Cartier in 2026.

Incidents vs Retail Luxury Goods and Jewelry Industry Average (This Year)

No incidents recorded for Hermès in 2026.

Incident History — Cartier (X = Date, Y = Severity)

Cartier cyber incidents detection timeline including parent company and subsidiaries

Incident History — Hermès (X = Date, Y = Severity)

Hermès cyber incidents detection timeline including parent company and subsidiaries

Cartier

Incidents

Date Detected: 6/2025

Type:Breach

Attack Vector: Credential Stuffing, Unauthorized Access

Blog: Blog

Date Detected: 6/2025

Type:Ransomware

Motivation: Financial gain, Data exfiltration

Blog: Blog

Hermès

Incidents

No Incident

Hermès company demonstrates a stronger AI Cybersecurity Score compared to Cartier company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Cartier company has historically faced a number of disclosed cyber incidents, whereas Hermès company has not reported any.

In the current year, Hermès company and Cartier company have not reported any cyber incidents.

Cartier company has confirmed experiencing a ransomware attack, while Hermès company has not reported such incidents publicly.

Cartier company has disclosed at least one data breach, while the other Hermès company has not reported such incidents publicly.

Neither Hermès company nor Cartier company has reported experiencing targeted cyberattacks publicly.

Neither Cartier company nor Hermès company has reported experiencing or disclosing vulnerabilities publicly.

Neither Cartier nor Hermès holds any compliance certifications.

Neither company holds any compliance certifications.

Hermès company has more subsidiaries worldwide compared to Cartier company.

Hermès company employs more people globally than Cartier company, reflecting its scale as a Retail Luxury Goods and Jewelry.

Neither Cartier nor Hermès holds SOC 2 Type 1 certification.

Neither Cartier nor Hermès holds SOC 2 Type 2 certification.

Neither Cartier nor Hermès holds ISO 27001 certification.

Neither Cartier nor Hermès holds PCI DSS certification.

Neither Cartier nor Hermès holds HIPAA certification.

Neither Cartier nor Hermès holds GDPR certification.

Description

A vulnerability was found in Nothings stb up to 1.26. Impacted is the function stbtt_InitFont_internal in the library stb_truetype.h of the component TTF File Handler. Performing a manipulation results in out-of-bounds read. Remote exploitation of the attack is possible. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss2

Base: 5.0

Severity: LOW

AV:N/AC:L/Au:N/C:N/I:N/A:P

cvss3

Base: 4.3

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

cvss4

Base: 5.3

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read in VS6ComFile!get_macro_mem_COM. Opening a crafted V7 file may lead to information disclosure from the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain a stack-based buffer overflow in VS6ComFile!CSaveData::_conv_AnimationItem. Opening a crafted V7 file may lead to arbitrary code execution on the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6MemInIF!set_temp_type_default. Opening a crafted V7 file may lead to information disclosure from the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6ComFile!load_link_inf. Opening a crafted V7 file may lead to information disclosure from the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Cartier

VS

Hermès

Cartier

Hermès

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Retail Luxury Goods and Jewelry Industry Average (This Year)

Incidents vs Retail Luxury Goods and Jewelry Industry Average (This Year)

Incident History — Cartier (X = Date, Y = Severity)

Incident History — Hermès (X = Date, Y = Severity)

Notable Incidents

No Incident

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2026-5314

Risk Information

CVE-2026-32929

Risk Information

CVE-2026-32928

Risk Information

CVE-2026-32927

Risk Information

CVE-2026-32926

Risk Information

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Cartier

VS

Hermès

Cartier

Hermès

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Retail Luxury Goods and Jewelry Industry Average (This Year)

Incidents vs Retail Luxury Goods and Jewelry Industry Average (This Year)

Incident History — Cartier (X = Date, Y = Severity)

Incident History — Hermès (X = Date, Y = Severity)

Notable Incidents

🔒 Incident : Breach VICMARCAR1772649374

🔒 Incident : Ransomware CAR722060625

No Incident

FAQ

Between Cartier company and Hermès company, which one has the best AI Cybersecurity Score ?

Between Cartier company and Hermès company, which one has experienced more cyber incidents in the past ?

Between Cartier company and Hermès company, which one has experienced more cyber incidents this year ?

Between Cartier company and Hermès company, which one has experienced at least one ransomware attack ?

Between Cartier company and Hermès company, which one has experienced at least one data breach ?

Between Cartier company and Hermès company, which one has experienced at least one targeted cyberattack ?

Between Cartier company and Hermès company, which one has experienced at least one vulnerability ?

Between Cartier company and Hermès company, which one holds the most compliance certifications ?

Between Cartier company and Hermès company, which one holds the fewest compliance certifications ?

Between Cartier company and Hermès company, which one has the most subsidiaries ?

Between Cartier company and Hermès company, which one has the largest number of employees ?

Between Cartier and Hermès, which company holds both SOC 2 Type 1 certifications ?

Between Cartier and Hermès, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — Cartier or Hermès ?

Which company is PCI DSS compliant — Cartier or Hermès ?

Between Cartier and Hermès, which company complies with HIPAA regulations for healthcare data ?

Between Cartier and Hermès, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2026-5314

Risk Information

CVE-2026-32929

Risk Information

CVE-2026-32928

Risk Information

CVE-2026-32927

Risk Information

CVE-2026-32926

Risk Information