Comparison Overview

Embraer

Av. Brigadeiro Faria Lima, 2170, São José dos Campos, 12227-901, BR

Last Update: 2026-04-04

Between 750 and 799

A global aerospace company headquartered in Brazil, Embraer has businesses in Commercial and Executive Aviation, Defense & Security, and Agricultural Aviation. The company designs, develops, manufactures and markets aircraft and systems, providing Services and Support to customer after-sales. Since it was founded in 1969, Embraer has delivered more than 8,000 aircraft. On average, about every 10 seconds an aircraft manufactured by Embraer takes off somewhere in the world, transporting over 145 million passengers a year.

NAICS: 3364

NAICS Definition: Aerospace Product and Parts Manufacturing

Employees: 24,241

Subsidiaries: 0

12-month incidents

0

Known data breaches

0

Attack type number

1

View Profile

Spirit AeroSystems

Spirit AeroSystems, 3801 S Oliver St, Wichita, KS, US, 67210

Last Update: 2026-03-30

Between 750 and 799

http://www.spiritaero.com

Inventing, designing and building what’s best in aerospace. Spirit AeroSystems is one of the world’s largest manufacturers of aerostructures for commercial airplanes, defense platforms, and business/regional jets. With expertise in aluminum and advanced composite manufacturing solutions, the company’s core products include fuselages, integrated wings and wing components, pylons, and nacelles. Also, Spirit serves the aftermarket for commercial and business/regional jets. Headquartered in Wichita, Kansas, Spirit has facilities in the U.S., U.K., France, Malaysia and Morocco.

NAICS: 3364

NAICS Definition: Aerospace Product and Parts Manufacturing

Employees: 11,632

Subsidiaries: 0

12-month incidents

0

Known data breaches

0

Attack type number

0

Embraer

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

https://images.rankiteo.com/companyimages/spiritaero.jpeg

Spirit AeroSystems

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Aviation and Aerospace Component Manufacturing Industry Average (This Year)

No incidents recorded for Embraer in 2026.

Incidents vs Aviation and Aerospace Component Manufacturing Industry Average (This Year)

No incidents recorded for Spirit AeroSystems in 2026.

Incident History — Embraer (X = Date, Y = Severity)

Embraer cyber incidents detection timeline including parent company and subsidiaries

Incident History — Spirit AeroSystems (X = Date, Y = Severity)

Spirit AeroSystems cyber incidents detection timeline including parent company and subsidiaries

Embraer

Incidents

Date Detected: 12/2020

Type:Cyber Attack

Blog: Blog

Spirit AeroSystems

Incidents

No Incident

Embraer company demonstrates a stronger AI Cybersecurity Score compared to Spirit AeroSystems company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Embraer company has historically faced a number of disclosed cyber incidents, whereas Spirit AeroSystems company has not reported any.

In the current year, Spirit AeroSystems company and Embraer company have not reported any cyber incidents.

Neither Spirit AeroSystems company nor Embraer company has reported experiencing a ransomware attack publicly.

Neither Spirit AeroSystems company nor Embraer company has reported experiencing a data breach publicly.

Embraer company has reported targeted cyberattacks, while Spirit AeroSystems company has not reported such incidents publicly.

Neither Embraer company nor Spirit AeroSystems company has reported experiencing or disclosing vulnerabilities publicly.

Neither Embraer nor Spirit AeroSystems holds any compliance certifications.

Neither company holds any compliance certifications.

Neither Embraer company nor Spirit AeroSystems company has publicly disclosed detailed information about the number of their subsidiaries.

Embraer company employs more people globally than Spirit AeroSystems company, reflecting its scale as a Aviation and Aerospace Component Manufacturing.

Neither Embraer nor Spirit AeroSystems holds SOC 2 Type 1 certification.

Neither Embraer nor Spirit AeroSystems holds SOC 2 Type 2 certification.

Neither Embraer nor Spirit AeroSystems holds ISO 27001 certification.

Neither Embraer nor Spirit AeroSystems holds PCI DSS certification.

Neither Embraer nor Spirit AeroSystems holds HIPAA certification.

Neither Embraer nor Spirit AeroSystems holds GDPR certification.

Description

nimiq/core-rs-albatross is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. Prior to version 1.3.0, two peer-facing consensus request handlers assume that the history index is always available and call blockchain.history_store.history_index().unwrap() directly. That assumption is false by construction. HistoryStoreProxy::history_index() explicitly returns None for the valid HistoryStoreProxy::WithoutIndex state. when a full node is syncing or otherwise running without the history index, a remote peer can send RequestTransactionsProof or RequestTransactionReceiptsByAddress and trigger an Option::unwrap() panic on the request path. This issue has been patched in version 1.3.0.

Published

Date

2026-04-03

Updated

Date

2026-04-03

Risk Information

cvss3

Base: 5.3

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

References

Description

PraisonAI is a multi-agent teams system. Prior to version 1.5.95, FileTools.download_file() in praisonaiagents validates the destination path but performs no validation on the url parameter, passing it directly to httpx.stream() with follow_redirects=True. An attacker who controls the URL can reach any host accessible from the server including cloud metadata services and internal network services. This issue has been patched in version 1.5.95.

Published

Date

2026-04-03

Updated

Date

2026-04-03

Risk Information

cvss3

Base: 8.6

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

References

https://github.com/MervinPraison/PraisonAI/security/advisories/GHSA-44c2-3rw4-5gvh

Description

PraisonAI is a multi-agent teams system. Prior to version 4.5.97, OAuthManager.validate_token() returns True for any token not found in its internal store, which is empty by default. Any HTTP request to the MCP server with an arbitrary Bearer token is treated as authenticated, granting full access to all registered tools and agent capabilities. This issue has been patched in version 4.5.97.

Published

Date

2026-04-03

Updated

Date

2026-04-03

Risk Information

cvss3

Base: 9.1

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

References

https://github.com/MervinPraison/PraisonAI/security/advisories/GHSA-98f9-fqg5-hvq5

Description

PraisonAI is a multi-agent teams system. Prior to version 4.5.97, the PraisonAI Gateway server accepts WebSocket connections at /ws and serves agent topology at /info with no authentication. Any network client can connect, enumerate registered agents, and send arbitrary messages to agents and their tool sets. This issue has been patched in version 4.5.97.

Published

Date

2026-04-03

Updated

Date

2026-04-03

Risk Information

cvss3

Base: 9.1

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

References

https://github.com/MervinPraison/PraisonAI/security/advisories/GHSA-cfh6-vr3j-qc3g

Description

PraisonAI is a multi-agent teams system. Prior to version 4.5.90, MCPToolIndex.search_tools() compiles a caller-supplied string directly as a Python regular expression with no validation, sanitization, or timeout. A crafted regex causes catastrophic backtracking in the re engine, blocking the Python thread for hundreds of seconds and causing a complete service outage. This issue has been patched in version 4.5.90.

Published

Date

2026-04-03

Updated

Date

2026-04-03

Risk Information

cvss3

Base: 6.5

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

References

https://github.com/MervinPraison/PraisonAI/security/advisories/GHSA-8w9j-hc3g-3g7f

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Embraer

VS

Spirit AeroSystems

Embraer

Spirit AeroSystems

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Aviation and Aerospace Component Manufacturing Industry Average (This Year)

Incidents vs Aviation and Aerospace Component Manufacturing Industry Average (This Year)

Incident History — Embraer (X = Date, Y = Severity)

Incident History — Spirit AeroSystems (X = Date, Y = Severity)

Notable Incidents

No Incident

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2026-35468

Risk Information

CVE-2026-34954

Risk Information

CVE-2026-34953

Risk Information

CVE-2026-34952

Risk Information

CVE-2026-34939

Risk Information

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Embraer

VS

Spirit AeroSystems

Embraer

Spirit AeroSystems

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Aviation and Aerospace Component Manufacturing Industry Average (This Year)

Incidents vs Aviation and Aerospace Component Manufacturing Industry Average (This Year)

Incident History — Embraer (X = Date, Y = Severity)

Incident History — Spirit AeroSystems (X = Date, Y = Severity)

Notable Incidents

🔒 Incident : Cyber Attack EMB14121122

No Incident

FAQ

Between Embraer company and Spirit AeroSystems company, which one has the best AI Cybersecurity Score ?

Between Embraer company and Spirit AeroSystems company, which one has experienced more cyber incidents in the past ?

Between Embraer company and Spirit AeroSystems company, which one has experienced more cyber incidents this year ?

Between Embraer company and Spirit AeroSystems company, which one has experienced at least one ransomware attack ?

Between Embraer company and Spirit AeroSystems company, which one has experienced at least one data breach ?

Between Embraer company and Spirit AeroSystems company, which one has experienced at least one targeted cyberattack ?

Between Embraer company and Spirit AeroSystems company, which one has experienced at least one vulnerability ?

Between Embraer company and Spirit AeroSystems company, which one holds the most compliance certifications ?

Between Embraer company and Spirit AeroSystems company, which one holds the fewest compliance certifications ?

Between Embraer company and Spirit AeroSystems company, which one has the most subsidiaries ?

Between Embraer company and Spirit AeroSystems company, which one has the largest number of employees ?

Between Embraer and Spirit AeroSystems, which company holds both SOC 2 Type 1 certifications ?

Between Embraer and Spirit AeroSystems, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — Embraer or Spirit AeroSystems ?

Which company is PCI DSS compliant — Embraer or Spirit AeroSystems ?

Between Embraer and Spirit AeroSystems, which company complies with HIPAA regulations for healthcare data ?

Between Embraer and Spirit AeroSystems, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2026-35468

Risk Information

CVE-2026-34954

Risk Information

CVE-2026-34953

Risk Information

CVE-2026-34952

Risk Information

CVE-2026-34939

Risk Information