Emirates NBD
Company Details
Linkedin ID:
emirates-nbd
Website:
Employees number:
24,743
Number of followers:
1,360,149
NAICS:
52211
Industry Type:
Homepage:
emiratesnbd.com
IP Addresses:
0
Company ID:
EMI_1823170
Scan Status:
In-progress
Internal validation & live display
Multiple badges & continuous verification
Faster underwriting decisions
Emirates NBD Vendor Cyber Rating & Cyber Score
emiratesnbd.comAbout Emirates NBD Emirates NBD (DFM: Emirates NBD) is a leading banking group in the MENAT (Middle East, North Africa and Türkiye) region with a presence in 13 countries, serving over 20 million customers. As at 30th September 2023, total assets were AED 836 billion, (equivalent to approx. USD 228 billion). The Group has operations in the UAE, Egypt, India, Türkiye, the Kingdom of Saudi Arabia, Singapore, the United Kingdom, Austria, Germany, Russia and Bahrain and representative offices in China and Indonesia with a total of 853 branches and 4,213 ATMs / SDMs. Emirates NBD is the leading financial services brand in the UAE with a Brand value of USD 3.89 billion. Emirates NBD Group serves its customers (individuals, businesses, governments, and institutions) and helps them realise their financial objectives through a range of banking products and services including retail banking, corporate and institutional banking, Islamic banking, investment banking, private banking, asset management, global markets and treasury, and brokerage operations. The Group is a key participant in the global digital banking industry with 97% of all financial transactions and requests conducted outside of its branches. The Group also operates Liv, the lifestyle digital bank by Emirates NBD, with close to half a million users, it continues to be the fastest-growing bank in the region. Emirates NBD contributes to the construction of a sustainable future as an active participant and supporter of the UAE’s main development and sustainability initiatives, including financial wellness and the inclusion of people of determination. Emirates NBD is committed to supporting the UAE’s Year of Sustainability as Principal Banking Partner of COP28 and an early supporter to the Dubai Can sustainability initiative, a city-wide initiative aimed to reduce use of single-use plastic bottled water.
Emirates NBD A.I CyberSecurity Scoring
Emirates NBD Risk Score (AI oriented)Between 800 and 849
Emirates NBD
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Emirates NBD Global Score (TPRM)XXXX
Emirates NBD
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Emirates NBD Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Emirates NBD: UAE Warns Banking Customers to be on 'High Alert' For Zero-Day WhatsApp Security Breach
Vulnerability
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: UAE Banking Customers Warned of WhatsApp Zero-Day Exploit Targeting Smartphones A critical WhatsApp security flaw has emerged in the UAE, enabling cybercriminals to hijack smartphones via a single voice call without requiring any user interaction. Emirates NBD issued an urgent advisory after reports revealed the attack exploits an undisclosed *zero-day vulnerability*, a software weakness unknown to developers until it is actively abused. This gives attackers a significant advantage before a patch is released. The breach leverages WhatsApp’s calling feature, allowing hackers to silently infiltrate devices and access private data, including photos, messages, and financial information. Victims may remain unaware of the compromise, as the attack does not trigger visible alerts or require engagement. Cybersecurity officials in the UAE, citing sources from *Gulf News*, warn that the timing of the attack is deliberate. The holiday season’s surge in calls and messages creates an ideal cover for malicious activity, as users are less likely to scrutinize unfamiliar contacts. Emirates NBD emphasized that banks will never request sensitive details, such as OTPs or PINs, via calls or messages. The institution has urged users to update WhatsApp and their operating systems, enable two-step verification, and silence calls from unknown numbers to mitigate risks. Additional precautions include verifying links for suspicious domains (e.g., ".xyz" or ".kom") and using only official banking channels for transactions. Authorities advise immediate reporting of any suspected breaches to limit potential damage. The incident underscores the growing sophistication of cyber threats targeting mobile platforms during high-activity periods.
Emirates NBD Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Emirates NBD
Incidents vs Banking Industry Average (This Year)
Emirates NBD has 50.0% fewer incidents than the average of same-industry companies with at least one recorded incident.
Incidents vs All-Companies Average (This Year)
Emirates NBD has 13.79% fewer incidents than the average of all companies with at least one recorded incident.
Incident Types Emirates NBD vs Banking Industry Avg (This Year)
Emirates NBD reported 1 incidents this year: 0 cyber attacks, 0 ransomware, 1 vulnerabilities, 0 data breaches, compared to industry peers with at least 1 incident.
Incident History — Emirates NBD (X = Date, Y = Severity)
Emirates NBD cyber incidents detection timeline including parent company and subsidiaries
Emirates NBD Company Subsidiaries
About Emirates NBD Emirates NBD (DFM: Emirates NBD) is a leading banking group in the MENAT (Middle East, North Africa and Türkiye) region with a presence in 13 countries, serving over 20 million customers. As at 30th September 2023, total assets were AED 836 billion, (equivalent to approx. USD 228 billion). The Group has operations in the UAE, Egypt, India, Türkiye, the Kingdom of Saudi Arabia, Singapore, the United Kingdom, Austria, Germany, Russia and Bahrain and representative offices in China and Indonesia with a total of 853 branches and 4,213 ATMs / SDMs. Emirates NBD is the leading financial services brand in the UAE with a Brand value of USD 3.89 billion. Emirates NBD Group serves its customers (individuals, businesses, governments, and institutions) and helps them realise their financial objectives through a range of banking products and services including retail banking, corporate and institutional banking, Islamic banking, investment banking, private banking, asset management, global markets and treasury, and brokerage operations. The Group is a key participant in the global digital banking industry with 97% of all financial transactions and requests conducted outside of its branches. The Group also operates Liv, the lifestyle digital bank by Emirates NBD, with close to half a million users, it continues to be the fastest-growing bank in the region. Emirates NBD contributes to the construction of a sustainable future as an active participant and supporter of the UAE’s main development and sustainability initiatives, including financial wellness and the inclusion of people of determination. Emirates NBD is committed to supporting the UAE’s Year of Sustainability as Principal Banking Partner of COP28 and an early supporter to the Dubai Can sustainability initiative, a city-wide initiative aimed to reduce use of single-use plastic bottled water.
Loading...
Emirates NBD Similar Companies
NatWest Group
We’re the bank that turns possibilities into progress. We understand our customers, their worlds, and what matters to them. We help them see the opportunities and navigate a rapidly changing world. And we’re simplifying our business so that we can anticipate our customers’ needs and react to them q
Philippine National Bank
Philippine National Bank is one of the country’s largest private universal banks in terms of assets and deposits. It provides a full range of banking and other financial services to its highly diverse clientele comprised of individual depositors, small and medium enterprises, domestic and internatio
Banco Bradesco
O Bradesco é um dos líderes do setor financeiro privado e um dos maiores empregadores na categoria. Além disso, apresenta o melhor índice de eficiência entre os bancos de varejo. Nossa missão é fornecer soluções, produtos e serviços financeiros e de seguros com agilidade e competência, principal
MCB Bank Limited
Welcome to the Official LinkedIn page of MCB Bank Limited. Established in 1947, MCB Bank Limited is one of the largest Banks in Pakistan with a total customer base exceeding 7 million. We have products and services to suit the every need of customers. To learn more about MCB Bank, please visit our w
Groupe Crédit Agricole
The Crédit Agricole group is the leading partner of the French economy and one of the largest banking groups in Europe. It is the leading retail bank in Europe as well as the first European asset manager, the first bancassurer in Europe and the third European player in project finance. Built on its
QNB Türkiye
Finansbank A.Ş. 26 Ekim 1987 tarihinde iş insanı Hüsnü Özyeğin liderliğinde 100 ortakla Bankalar Kanunu ve Türk Ticaret Kanunu hükümleri uyarınca kuruldu. Sektörde hızlı büyeme ile ilk 5 büyük özel banka arasına giren QNB Finansbank, 2006 yılında Yunanistan'ın en büyük bankası National Bank of Greec
Commerzbank is the leading bank for the German Mittelstand and a strong partner for around 24,000 corporate client groups. In addition, it supports private and small-business customers in Germany with more than €400 billion assets under management. The Bank’s two Business Segments – Private and Smal
In the nearly 100 years since its founding by the Great Leader Mustafa Kemal Atatürk on August 26, 1924, İşbank has undertaken various roles and made significant contributions to the development of our country in many fields, especially in industry and trade. İşbank offers products and services to
RBC
Royal Bank of Canada is a global financial institution with a purpose-driven, principles-led approach to delivering leading performance. Our success comes from the 94,000+ employees who leverage their imaginations and insights to bring our vision, values and strategy to life so we can help our clien
.png)
Emirates NBD CyberSecurity News
March 27, 2026 01:56 PM
The Cybersecurity Threats Hitting UAE Businesses Right Now
The UAE has built one of the most connected digital economies in the world. That connectivity comes with a cost. As businesses across Dubai,...
March 27, 2026 10:40 AM
The Cybersecurity Threats Hitting UAE Businesses Right Now
The UAE Cybersecurity Council made significant progress by introducing stricter compliance requirements for data protection.
March 27, 2026 07:07 AM
allocatte Closes $31 Million Oversubscribed Series B Led by Emirates NBD, Accelerating Global Expansion of Tokenized Real Estate
Landmark funding round signals institutional confidence in fractional property investment as allocatte scales to new markets and asset...
March 16, 2026 07:00 AM
AI is already deciding your bank calls, flights and bills in the UAE
Discover how AI is quietly transforming customer interactions in UAE banks, airlines, and telecoms, enhancing efficiency and innovation...
March 14, 2026 07:07 PM
CAC International Bank strengthens cybersecurity with ISO 27001:2022 certification
This achievement highlights the bank's commitment to safeguarding customer data, and enhancing cybersecurity measures.
March 14, 2026 04:12 AM
UAE’s du launches secondary public offering of Mubadala-owned shares
Emirates Integrated Telecommunications Company (du) has launched a secondary public offering of shares held by Mamoura Diversified Global Holding (Mamoura),...
February 21, 2026 08:00 AM
Startup Wrap: MENA ventures draw $190m in multi-sector funding wave
https://arab.news/negvn. Transactions include early-stage seed rounds and growth credit facilities. RIYADH: Startups across the Middle East...
January 19, 2026 08:00 AM
Emirates NBD issues Dh1 billion first-ever digital bond in MENA
Emirates NBD makes history with the first-ever AED-denominated digital bond in MENA, issuing Dh1 billion in Digitally Native Notes.
January 12, 2026 08:00 AM
UAE Warns Banking Customers to be on 'High Alert' For Zero-Day WhatsApp Security Breach
A dangerous WhatsApp zero-day attack in the UAE can compromise smartphones through a single call, putting bank accounts and private data at...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Emirates NBD CyberSecurity History Information
Official Website of Emirates NBD
The official website of Emirates NBD is http://www.emiratesnbd.com.
Emirates NBD’s AI-Generated Cybersecurity Score
According to Rankiteo, Emirates NBD’s AI-generated cybersecurity score is 811, reflecting their Good security posture.
How many security badges does Emirates NBD’ have ?
According to Rankiteo, Emirates NBD currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Has Emirates NBD been affected by any supply chain cyber incidents ?
According to Rankiteo, Emirates NBD has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
Does Emirates NBD have SOC 2 Type 1 certification ?
According to Rankiteo, Emirates NBD is not certified under SOC 2 Type 1.
Does Emirates NBD have SOC 2 Type 2 certification ?
According to Rankiteo, Emirates NBD does not hold a SOC 2 Type 2 certification.
Does Emirates NBD comply with GDPR ?
According to Rankiteo, Emirates NBD is not listed as GDPR compliant.
Does Emirates NBD have PCI DSS certification ?
According to Rankiteo, Emirates NBD does not currently maintain PCI DSS compliance.
Does Emirates NBD comply with HIPAA ?
According to Rankiteo, Emirates NBD is not compliant with HIPAA regulations.
Does Emirates NBD have ISO 27001 certification ?
According to Rankiteo,Emirates NBD is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Emirates NBD
Emirates NBD operates primarily in the Banking industry.
Number of Employees at Emirates NBD
Emirates NBD employs approximately 24,743 people worldwide.
Subsidiaries Owned by Emirates NBD
Emirates NBD presently has no subsidiaries across any sectors.
Emirates NBD’s LinkedIn Followers
Emirates NBD’s official LinkedIn profile has approximately 1,360,149 followers.
NAICS Classification of Emirates NBD
Emirates NBD is classified under the NAICS code 52211, which corresponds to Commercial Banking.
Emirates NBD’s Presence on Crunchbase
Yes, Emirates NBD has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/emirates-nbd.
Emirates NBD’s Presence on LinkedIn
Yes, Emirates NBD maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/emirates-nbd.
Cybersecurity Incidents Involving Emirates NBD
As of April 02, 2026, Rankiteo reports that Emirates NBD has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Emirates NBD has an estimated 7,285 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Emirates NBD ?
Incident Types: The types of cybersecurity incidents that have occurred include Vulnerability.
How does Emirates NBD detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an containment measures with advisory issued to customers, recommendations for security updates and two-step verification, and remediation measures with encouraging app and os updates, enabling two-step verification, muting unknown calls, and communication strategy with urgent advisory to customers via official channels..
Incident Details
Can you provide details on each incident ?
Title: WhatsApp Zero-Day Security Breach Targeting UAE Banking Customers
Description: Banking customers across the UAE are being urged to stay vigilant after reports of a serious WhatsApp 'zero-day' security breach that could allow cybercriminals to take over smartphones through a single voice call. The attack exploits an undisclosed software flaw, enabling hackers to compromise devices without user interaction. Once compromised, attackers may access private photos, personal conversations, and sensitive financial data.
Type: Zero-Day Exploit
Attack Vector: Voice call via WhatsApp
Vulnerability Exploited: Undisclosed zero-day vulnerability in WhatsApp calling feature
Motivation: Financial gain, data theft
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Vulnerability.
How does the company identify the attack vectors used in incidents ?
Identification of Attack Vectors: The company identifies the attack vectors used in incidents through WhatsApp voice call.
Impact of the Incidents
What was the impact of each incident ?
Incident : Zero-Day Exploit EMI1768217746
Data Compromised: Private photos, personal conversations, sensitive financial data
Systems Affected: Smartphones (WhatsApp users)
Brand Reputation Impact: Potential reputational damage to banks and WhatsApp
Identity Theft Risk: High
Payment Information Risk: High
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Private Photos, Personal Conversations, Sensitive Financial Data and .
Which entities were affected by each incident ?
Incident : Zero-Day Exploit EMI1768217746
Entity Name: Emirates NBD
Entity Type: Bank
Industry: Banking/Financial Services
Location: UAE
Customers Affected: Banking customers across the UAE
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Zero-Day Exploit EMI1768217746
Containment Measures: Advisory issued to customers, recommendations for security updates and two-step verification
Remediation Measures: Encouraging app and OS updates, enabling two-step verification, muting unknown calls
Communication Strategy: Urgent advisory to customers via official channels
Data Breach Information
What type of data was compromised in each breach ?
Incident : Zero-Day Exploit EMI1768217746
Type of Data Compromised: Private photos, Personal conversations, Sensitive financial data
Sensitivity of Data: High
Personally Identifiable Information: Likely
What measures does the company take to prevent data exfiltration ?
Prevention of Data Exfiltration: The company takes the following measures to prevent data exfiltration: Encouraging app and OS updates, enabling two-step verification, muting unknown calls.
How does the company handle incidents involving personally identifiable information (PII) ?
Handling of PII Incidents: The company handles incidents involving personally identifiable information (PII) through by advisory issued to customers and recommendations for security updates and two-step verification.
Lessons Learned and Recommendations
What lessons were learned from each incident ?
Incident : Zero-Day Exploit EMI1768217746
Lessons Learned: Zero-day vulnerabilities pose significant risks, especially during high-activity periods like holidays. Proactive security measures (e.g., updates, two-step verification) are critical to mitigating such threats.
What recommendations were made to prevent future incidents ?
Incident : Zero-Day Exploit EMI1768217746
Recommendations: Keep apps and software updated, Enable WhatsApp two-step verification, Silence calls from unknown numbers, Use only official banking channels, Examine links carefully, Report suspicious activity immediatelyKeep apps and software updated, Enable WhatsApp two-step verification, Silence calls from unknown numbers, Use only official banking channels, Examine links carefully, Report suspicious activity immediatelyKeep apps and software updated, Enable WhatsApp two-step verification, Silence calls from unknown numbers, Use only official banking channels, Examine links carefully, Report suspicious activity immediatelyKeep apps and software updated, Enable WhatsApp two-step verification, Silence calls from unknown numbers, Use only official banking channels, Examine links carefully, Report suspicious activity immediatelyKeep apps and software updated, Enable WhatsApp two-step verification, Silence calls from unknown numbers, Use only official banking channels, Examine links carefully, Report suspicious activity immediatelyKeep apps and software updated, Enable WhatsApp two-step verification, Silence calls from unknown numbers, Use only official banking channels, Examine links carefully, Report suspicious activity immediately
What are the key lessons learned from past incidents ?
Key Lessons Learned: The key lessons learned from past incidents are Zero-day vulnerabilities pose significant risks, especially during high-activity periods like holidays. Proactive security measures (e.g., updates, two-step verification) are critical to mitigating such threats.
References
Where can I find more information about each incident ?
Incident : Zero-Day Exploit EMI1768217746
Source: Gulf News
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Gulf News.
Investigation Status
How does the company communicate the status of incident investigations to stakeholders ?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through Urgent advisory to customers via official channels.
Stakeholder and Customer Advisories
Were there any advisories issued to stakeholders or customers for each incident ?
Incident : Zero-Day Exploit EMI1768217746
Stakeholder Advisories: Emirates NBD issued an urgent advisory to customers warning of the threat and providing protective measures.
Customer Advisories: Emirates NBD reiterated that it will never ask for personal information or authentication codes via calls or messages. Customers are advised to stay vigilant and follow security best practices.
What advisories does the company provide to stakeholders and customers following an incident ?
Advisories Provided: The company provides the following advisories to stakeholders and customers following an incident: were Emirates NBD issued an urgent advisory to customers warning of the threat and providing protective measures. and Emirates NBD reiterated that it will never ask for personal information or authentication codes via calls or messages. Customers are advised to stay vigilant and follow security best practices..
Initial Access Broker
How did the initial access broker gain entry for each incident ?
Incident : Zero-Day Exploit EMI1768217746
Entry Point: WhatsApp voice call
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident ?
Incident : Zero-Day Exploit EMI1768217746
Root Causes: Undisclosed zero-day vulnerability in WhatsApp's calling feature
Corrective Actions: Encouraging users to update apps, enable two-step verification, and mute unknown calls
What corrective actions has the company taken based on post-incident analysis ?
Corrective Actions Taken: The company has taken the following corrective actions based on post-incident analysis: Encouraging users to update apps, enable two-step verification, and mute unknown calls.
Additional Questions
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were Private photos, personal conversations and sensitive financial data.
Response to the Incidents
What containment measures were taken in the most recent incident ?
Containment Measures in Most Recent Incident: The containment measures taken in the most recent incident were Advisory issued to customers and recommendations for security updates and two-step verification.
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Private photos, personal conversations and sensitive financial data.
Lessons Learned and Recommendations
What was the most significant lesson learned from past incidents ?
Most Significant Lesson Learned: The most significant lesson learned from past incidents was Zero-day vulnerabilities pose significant risks, especially during high-activity periods like holidays. Proactive security measures (e.g., updates, two-step verification) are critical to mitigating such threats.
What was the most significant recommendation implemented to improve cybersecurity ?
Most Significant Recommendation Implemented: The most significant recommendation implemented to improve cybersecurity was Keep apps and software updated, Enable WhatsApp two-step verification, Report suspicious activity immediately, Use only official banking channels, Examine links carefully and Silence calls from unknown numbers.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident is Gulf News.
Stakeholder and Customer Advisories
What was the most recent stakeholder advisory issued ?
Most Recent Stakeholder Advisory: The most recent stakeholder advisory issued was Emirates NBD issued an urgent advisory to customers warning of the threat and providing protective measures., .
What was the most recent customer advisory issued ?
Most Recent Customer Advisory: The most recent customer advisory issued was an Emirates NBD reiterated that it will never ask for personal information or authentication codes via calls or messages. Customers are advised to stay vigilant and follow security best practices.
Initial Access Broker
What was the most recent entry point used by an initial access broker ?
Most Recent Entry Point: The most recent entry point used by an initial access broker was an WhatsApp voice call.
.png)
Latest Global CVEs (Not Company-Specific)
Description
A vulnerability was found in Nothings stb up to 1.26. Impacted is the function stbtt_InitFont_internal in the library stb_truetype.h of the component TTF File Handler. Performing a manipulation results in out-of-bounds read. Remote exploitation of the attack is possible. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.
Risk Information
cvss2
Base: 5.0
Severity: LOW
AV:N/AC:L/Au:N/C:N/I:N/A:P
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read in VS6ComFile!get_macro_mem_COM. Opening a crafted V7 file may lead to information disclosure from the affected product.
Risk Information
cvss3
Base: 7.8
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
cvss4
Base: 8.4
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
V-SFT versions 6.2.10.0 and prior contain a stack-based buffer overflow in VS6ComFile!CSaveData::_conv_AnimationItem. Opening a crafted V7 file may lead to arbitrary code execution on the affected product.
Risk Information
cvss3
Base: 7.8
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
cvss4
Base: 8.4
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6MemInIF!set_temp_type_default. Opening a crafted V7 file may lead to information disclosure from the affected product.
Risk Information
cvss3
Base: 7.8
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
cvss4
Base: 8.4
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6ComFile!load_link_inf. Opening a crafted V7 file may lead to information disclosure from the affected product.
Risk Information
cvss3
Base: 7.8
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
cvss4
Base: 8.4
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=emirates-nbd' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
