Comparison Overview

Databricks

160 Spear Street, 13th Floor, San Francisco, CA, US, 94105

Last Update: 2026-04-01

Between 750 and 799

Databricks is the Data and AI company. More than 20,000 organizations worldwide — including adidas, AT&T, Bayer, Block, Mastercard, Rivian, Unilever, and over 60% of the Fortune 500 — rely on Databricks to build and scale data and AI apps, analytics and agents. Headquartered in San Francisco with 30+ offices around the globe, Databricks offers a unified Data Intelligence Platform that includes Agent Bricks, Lakeflow, Lakehouse, Lakebase and Unity Catalog. --- Databricks applicants Please apply through our official Careers page at databricks.com/company/careers. All official communication from Databricks will come from email addresses ending with @databricks.com or @goodtime.io (our meeting tool).

NAICS: 5112

NAICS Definition: Software Publishers

Employees: 14,231

Subsidiaries: 0

12-month incidents

0

Known data breaches

0

Attack type number

0

View Profile

Upwork

475 Brannan St, San Francisco, 94107, US

Last Update: 2026-03-31

Between 800 and 849

https://www.upwork.com/

Upwork is the world’s work marketplace that connects businesses with independent talent from across the globe. We serve everyone from one-person startups to large, Fortune 100 enterprises with a powerful, trust-driven platform that enables companies and talent to work together in new ways that unlock their potential. Our talent community on Upwork encompasses more than 10,000 skills in categories including website & app development, creative & design, customer support, finance & accounting, consulting, and operations.

NAICS: 5112

NAICS Definition: Software Publishers

Employees: 169,561

Subsidiaries: 3

12-month incidents

0

Known data breaches

0

Attack type number

0

Databricks

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Upwork

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Software Development Industry Average (This Year)

No incidents recorded for Databricks in 2026.

Incidents vs Software Development Industry Average (This Year)

No incidents recorded for Upwork in 2026.

Incident History — Databricks (X = Date, Y = Severity)

Databricks cyber incidents detection timeline including parent company and subsidiaries

Incident History — Upwork (X = Date, Y = Severity)

Upwork cyber incidents detection timeline including parent company and subsidiaries

Databricks

Incidents

No Incident

Upwork

Incidents

No Incident

Upwork company demonstrates a stronger AI Cybersecurity Score compared to Databricks company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, Upwork company has disclosed a higher number of cyber incidents compared to Databricks company.

In the current year, Upwork company and Databricks company have not reported any cyber incidents.

Neither Upwork company nor Databricks company has reported experiencing a ransomware attack publicly.

Neither Upwork company nor Databricks company has reported experiencing a data breach publicly.

Neither Upwork company nor Databricks company has reported experiencing targeted cyberattacks publicly.

Neither Databricks company nor Upwork company has reported experiencing or disclosing vulnerabilities publicly.

Neither Databricks nor Upwork holds any compliance certifications.

Neither company holds any compliance certifications.

Upwork company has more subsidiaries worldwide compared to Databricks company.

Upwork company employs more people globally than Databricks company, reflecting its scale as a Software Development.

Neither Databricks nor Upwork holds SOC 2 Type 1 certification.

Neither Databricks nor Upwork holds SOC 2 Type 2 certification.

Neither Databricks nor Upwork holds ISO 27001 certification.

Neither Databricks nor Upwork holds PCI DSS certification.

Neither Databricks nor Upwork holds HIPAA certification.

Neither Databricks nor Upwork holds GDPR certification.

Description

A vulnerability was found in Nothings stb up to 1.26. Impacted is the function stbtt_InitFont_internal in the library stb_truetype.h of the component TTF File Handler. Performing a manipulation results in out-of-bounds read. Remote exploitation of the attack is possible. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss2

Base: 5.0

Severity: LOW

AV:N/AC:L/Au:N/C:N/I:N/A:P

cvss3

Base: 4.3

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

cvss4

Base: 5.3

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read in VS6ComFile!get_macro_mem_COM. Opening a crafted V7 file may lead to information disclosure from the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain a stack-based buffer overflow in VS6ComFile!CSaveData::_conv_AnimationItem. Opening a crafted V7 file may lead to arbitrary code execution on the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6MemInIF!set_temp_type_default. Opening a crafted V7 file may lead to information disclosure from the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6ComFile!load_link_inf. Opening a crafted V7 file may lead to information disclosure from the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Databricks

VS

Upwork

Databricks

Upwork

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Software Development Industry Average (This Year)

Incidents vs Software Development Industry Average (This Year)

Incident History — Databricks (X = Date, Y = Severity)

Incident History — Upwork (X = Date, Y = Severity)

Notable Incidents

No Incident

No Incident

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2026-5314

Risk Information

CVE-2026-32929

Risk Information

CVE-2026-32928

Risk Information

CVE-2026-32927

Risk Information

CVE-2026-32926

Risk Information

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Databricks

VS

Upwork

Databricks

Upwork

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Software Development Industry Average (This Year)

Incidents vs Software Development Industry Average (This Year)

Incident History — Databricks (X = Date, Y = Severity)

Incident History — Upwork (X = Date, Y = Severity)

Notable Incidents

No Incident

No Incident

FAQ

Between Databricks company and Upwork company, which one has the best AI Cybersecurity Score ?

Between Databricks company and Upwork company, which one has experienced more cyber incidents in the past ?

Between Databricks company and Upwork company, which one has experienced more cyber incidents this year ?

Between Databricks company and Upwork company, which one has experienced at least one ransomware attack ?

Between Databricks company and Upwork company, which one has experienced at least one data breach ?

Between Databricks company and Upwork company, which one has experienced at least one targeted cyberattack ?

Between Databricks company and Upwork company, which one has experienced at least one vulnerability ?

Between Databricks company and Upwork company, which one holds the most compliance certifications ?

Between Databricks company and Upwork company, which one holds the fewest compliance certifications ?

Between Databricks company and Upwork company, which one has the most subsidiaries ?

Between Databricks company and Upwork company, which one has the largest number of employees ?

Between Databricks and Upwork, which company holds both SOC 2 Type 1 certifications ?

Between Databricks and Upwork, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — Databricks or Upwork ?

Which company is PCI DSS compliant — Databricks or Upwork ?

Between Databricks and Upwork, which company complies with HIPAA regulations for healthcare data ?

Between Databricks and Upwork, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2026-5314

Risk Information

CVE-2026-32929

Risk Information

CVE-2026-32928

Risk Information

CVE-2026-32927

Risk Information

CVE-2026-32926

Risk Information