Comparison Overview

Devoteam

73, rue Anatole France, Levallois-Perret, 92300, FR

Last Update: 2026-04-02

Between 750 and 799

http://www.devoteam.com

Devoteam is a AI-driven tech consulting firm specialised in cloud platforms, cyber, data, and sustainability. Tech native for almost 30 years, Devoteam guides businesses through sustainable digital transformation to deliver value. With over 11,000 tech architects in more than 25 countries across Europe, the Middle East, and Africa, Devoteam is committed to using technology to serve people.

NAICS: 5416

NAICS Definition: Management, Scientific, and Technical Consulting Services

Employees: 10,286

Subsidiaries: 13

12-month incidents

0

Known data breaches

0

Attack type number

1

View Profile

Bain & Company

131 Dartmouth Street, Boston, MA, US, 02116

Last Update: 2026-04-01

Between 800 and 849

http://www.bain.com

Bain & Company is a global consultancy that helps the world’s most ambitious change makers define the future. Across 65 cities in 40 countries, we work alongside our clients as one team with a shared ambition to achieve extraordinary results, outperform the competition, and redefine industries. We complement our tailored, integrated expertise with a vibrant ecosystem of digital innovators to deliver better, faster, and more enduring outcomes. Our 10-year commitment to invest more than $1 billion in pro bono services brings our talent, expertise, and insight to organizations tackling today’s urgent challenges in education, racial equity, social justice, economic development, and the environment. We earned a platinum rating from EcoVadis, the leading platform for environmental, social, and ethical performance ratings for global supply chains, putting us in the top 1% of all companies. Since our founding in 1973, we have measured our success by the success of our clients, and we proudly maintain the highest level of client

NAICS: 5416

NAICS Definition: Management, Scientific, and Technical Consulting Services

Employees: 22,861

Subsidiaries: 1

12-month incidents

0

Known data breaches

0

Attack type number

0

Devoteam

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

https://images.rankiteo.com/companyimages/bain-and-company.jpeg

Bain & Company

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Business Consulting and Services Industry Average (This Year)

No incidents recorded for Devoteam in 2026.

Incidents vs Business Consulting and Services Industry Average (This Year)

No incidents recorded for Bain & Company in 2026.

Incident History — Devoteam (X = Date, Y = Severity)

Devoteam cyber incidents detection timeline including parent company and subsidiaries

Incident History — Bain & Company (X = Date, Y = Severity)

Bain & Company cyber incidents detection timeline including parent company and subsidiaries

Devoteam

Incidents

Date Detected: 11/2025

Type:Vulnerability

Attack Vector: Local (for CVE-2025-62215), Remote (for CVE-2025-60724, CVE-2025-62222), User Interaction Required (for CVE-2025-62199, CVE-2025-62222), Malicious Document (Metafile, Office File, GitHub Issue), Preview Pane (for CVE-2025-62199), Network-Based (for CVE-2025-62222)

Blog: Blog

Bain & Company

Incidents

No Incident

Bain & Company company demonstrates a stronger AI Cybersecurity Score compared to Devoteam company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Devoteam company has historically faced a number of disclosed cyber incidents, whereas Bain & Company company has not reported any.

In the current year, Bain & Company company and Devoteam company have not reported any cyber incidents.

Neither Bain & Company company nor Devoteam company has reported experiencing a ransomware attack publicly.

Neither Bain & Company company nor Devoteam company has reported experiencing a data breach publicly.

Neither Bain & Company company nor Devoteam company has reported experiencing targeted cyberattacks publicly.

Devoteam company has disclosed at least one vulnerability, while Bain & Company company has not reported such incidents publicly.

Neither Devoteam nor Bain & Company holds any compliance certifications.

Neither company holds any compliance certifications.

Devoteam company has more subsidiaries worldwide compared to Bain & Company company.

Bain & Company company employs more people globally than Devoteam company, reflecting its scale as a Business Consulting and Services.

Neither Devoteam nor Bain & Company holds SOC 2 Type 1 certification.

Neither Devoteam nor Bain & Company holds SOC 2 Type 2 certification.

Neither Devoteam nor Bain & Company holds ISO 27001 certification.

Neither Devoteam nor Bain & Company holds PCI DSS certification.

Neither Devoteam nor Bain & Company holds HIPAA certification.

Neither Devoteam nor Bain & Company holds GDPR certification.

Description

A vulnerability was found in Nothings stb up to 1.26. Impacted is the function stbtt_InitFont_internal in the library stb_truetype.h of the component TTF File Handler. Performing a manipulation results in out-of-bounds read. Remote exploitation of the attack is possible. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss2

Base: 5.0

Severity: LOW

AV:N/AC:L/Au:N/C:N/I:N/A:P

cvss3

Base: 4.3

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

cvss4

Base: 5.3

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read in VS6ComFile!get_macro_mem_COM. Opening a crafted V7 file may lead to information disclosure from the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain a stack-based buffer overflow in VS6ComFile!CSaveData::_conv_AnimationItem. Opening a crafted V7 file may lead to arbitrary code execution on the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6MemInIF!set_temp_type_default. Opening a crafted V7 file may lead to information disclosure from the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6ComFile!load_link_inf. Opening a crafted V7 file may lead to information disclosure from the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Devoteam

VS

Bain & Company

Devoteam

Bain & Company

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Business Consulting and Services Industry Average (This Year)

Incidents vs Business Consulting and Services Industry Average (This Year)

Incident History — Devoteam (X = Date, Y = Severity)

Incident History — Bain & Company (X = Date, Y = Severity)

Notable Incidents

No Incident

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2026-5314

Risk Information

CVE-2026-32929

Risk Information

CVE-2026-32928

Risk Information

CVE-2026-32927

Risk Information

CVE-2026-32926

Risk Information

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Devoteam

VS

Bain & Company

Devoteam

Bain & Company

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Business Consulting and Services Industry Average (This Year)

Incidents vs Business Consulting and Services Industry Average (This Year)

Incident History — Devoteam (X = Date, Y = Severity)

Incident History — Bain & Company (X = Date, Y = Severity)

Notable Incidents

🔒 Incident : Vulnerability DEV0832208111225

No Incident

FAQ

Between Devoteam company and Bain & Company company, which one has the best AI Cybersecurity Score ?

Between Devoteam company and Bain & Company company, which one has experienced more cyber incidents in the past ?

Between Devoteam company and Bain & Company company, which one has experienced more cyber incidents this year ?

Between Devoteam company and Bain & Company company, which one has experienced at least one ransomware attack ?

Between Devoteam company and Bain & Company company, which one has experienced at least one data breach ?

Between Devoteam company and Bain & Company company, which one has experienced at least one targeted cyberattack ?

Between Devoteam company and Bain & Company company, which one has experienced at least one vulnerability ?

Between Devoteam company and Bain & Company company, which one holds the most compliance certifications ?

Between Devoteam company and Bain & Company company, which one holds the fewest compliance certifications ?

Between Devoteam company and Bain & Company company, which one has the most subsidiaries ?

Between Devoteam company and Bain & Company company, which one has the largest number of employees ?

Between Devoteam and Bain & Company, which company holds both SOC 2 Type 1 certifications ?

Between Devoteam and Bain & Company, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — Devoteam or Bain & Company ?

Which company is PCI DSS compliant — Devoteam or Bain & Company ?

Between Devoteam and Bain & Company, which company complies with HIPAA regulations for healthcare data ?

Between Devoteam and Bain & Company, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2026-5314

Risk Information

CVE-2026-32929

Risk Information

CVE-2026-32928

Risk Information

CVE-2026-32927

Risk Information

CVE-2026-32926

Risk Information