Comparison Overview

Ericsson

Torshamnsgatan 21, Kista, Stockholm, SE

Last Update: 2026-04-02

Between 550 and 599

http://www.ericsson.com

The future of mobile isn’t on the horizon, it’s happening now. At Ericsson, we’re building the foundation for an open network ecosystem where industries, developers, and enterprises thrive. The convergence of 5G, AI, cloud, and network APIs isn’t just a technological shift; it’s a transformation that is redefining industries and enhancing everyday life. Open, programmable networks are enabling real-time innovation and unlocking new business models across the globe. Imagine a world where developers can dynamically access network capabilities on demand, where enterprises don’t just use connectivity but shape it. This isn’t a distant vision, it’s the ecosystem we’re creating today. Collaboration fuels everything we do. By working across industries, we’re designing a future where connectivity isn’t just seamless. It’s intelligent, programmable, and transformative. The shift is happening. Are you part of it?

NAICS: 517

NAICS Definition: Telecommunications

Employees: 107,243

Subsidiaries: 8

12-month incidents

3

Known data breaches

5

Attack type number

3

View Profile

Ciena

7035 Ridge Road, Hanover, 21076, US

Last Update: 2026-04-01

Between 800 and 849

http://www.ciena.com

Ciena (NYSE:CIEN) is the global leader in high-speed connectivity. We build advanced networks to support exponential growth in bandwidth demand—empowering our customers, partners, and communities to thrive in the AI era. With unparalleled expertise and innovation, our networking systems, interconnects, automation software, and services revolutionize data transmission and network management.

NAICS: 517

NAICS Definition: Telecommunications

Employees: 10,306

Subsidiaries: 2

12-month incidents

0

Known data breaches

0

Attack type number

0

Ericsson

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Ciena

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Telecommunications Industry Average (This Year)

Ericsson has 66.67% more incidents than the average of same-industry companies with at least one recorded incident.

Incidents vs Telecommunications Industry Average (This Year)

No incidents recorded for Ciena in 2026.

Incident History — Ericsson (X = Date, Y = Severity)

Ericsson cyber incidents detection timeline including parent company and subsidiaries

Incident History — Ciena (X = Date, Y = Severity)

Ciena cyber incidents detection timeline including parent company and subsidiaries

Ericsson

Incidents

Date Detected: 3/2026

Type:Breach

Attack Vector: Third-party vendor compromise

Blog: Blog

Date Detected: 2/2026

Type:Cyber Attack

Attack Vector: Stolen credentials from Infostealer malware (RedLine, Raccoon, Vidar)

Motivation: Unauthorized access to corporate systems, data exfiltration, potential financial gain

Blog: Blog

Date Detected: 2/2026

Type:Breach

Attack Vector: Stolen employee credentials via infostealer malware

Motivation: Network intrusion, data exfiltration, potential ransomware deployment

Blog: Blog

Ciena

Incidents

No Incident

Ciena company demonstrates a stronger AI Cybersecurity Score compared to Ericsson company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Ericsson company has historically faced a number of disclosed cyber incidents, whereas Ciena company has not reported any.

In the current year, Ericsson company has reported more cyber incidents than Ciena company.

Neither Ciena company nor Ericsson company has reported experiencing a ransomware attack publicly.

Ericsson company has disclosed at least one data breach, while the other Ciena company has not reported such incidents publicly.

Ericsson company has reported targeted cyberattacks, while Ciena company has not reported such incidents publicly.

Ericsson company has disclosed at least one vulnerability, while Ciena company has not reported such incidents publicly.

Neither Ericsson nor Ciena holds any compliance certifications.

Neither company holds any compliance certifications.

Ericsson company has more subsidiaries worldwide compared to Ciena company.

Ericsson company employs more people globally than Ciena company, reflecting its scale as a Telecommunications.

Neither Ericsson nor Ciena holds SOC 2 Type 1 certification.

Neither Ericsson nor Ciena holds SOC 2 Type 2 certification.

Neither Ericsson nor Ciena holds ISO 27001 certification.

Neither Ericsson nor Ciena holds PCI DSS certification.

Neither Ericsson nor Ciena holds HIPAA certification.

Neither Ericsson nor Ciena holds GDPR certification.

Description

A vulnerability was found in Nothings stb up to 1.26. Impacted is the function stbtt_InitFont_internal in the library stb_truetype.h of the component TTF File Handler. Performing a manipulation results in out-of-bounds read. Remote exploitation of the attack is possible. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss2

Base: 5.0

Severity: LOW

AV:N/AC:L/Au:N/C:N/I:N/A:P

cvss3

Base: 4.3

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

cvss4

Base: 5.3

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read in VS6ComFile!get_macro_mem_COM. Opening a crafted V7 file may lead to information disclosure from the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain a stack-based buffer overflow in VS6ComFile!CSaveData::_conv_AnimationItem. Opening a crafted V7 file may lead to arbitrary code execution on the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6MemInIF!set_temp_type_default. Opening a crafted V7 file may lead to information disclosure from the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6ComFile!load_link_inf. Opening a crafted V7 file may lead to information disclosure from the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Ericsson

VS

Ciena

Ericsson

Ciena

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Telecommunications Industry Average (This Year)

Incidents vs Telecommunications Industry Average (This Year)

Incident History — Ericsson (X = Date, Y = Severity)

Incident History — Ciena (X = Date, Y = Severity)

Notable Incidents

No Incident

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2026-5314

Risk Information

CVE-2026-32929

Risk Information

CVE-2026-32928

Risk Information

CVE-2026-32927

Risk Information

CVE-2026-32926

Risk Information

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Ericsson

VS

Ciena

Ericsson

Ciena

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Telecommunications Industry Average (This Year)

Incidents vs Telecommunications Industry Average (This Year)

Incident History — Ericsson (X = Date, Y = Severity)

Incident History — Ciena (X = Date, Y = Severity)

Notable Incidents

🔒 Incident : Breach ERI1773189089

🔒 Incident : Cyber Attack ERIDEFJOHROLVID1772180734

🔒 Incident : Breach JOHROLERI1772202424

No Incident

FAQ

Between Ericsson company and Ciena company, which one has the best AI Cybersecurity Score ?

Between Ericsson company and Ciena company, which one has experienced more cyber incidents in the past ?

Between Ericsson company and Ciena company, which one has experienced more cyber incidents this year ?

Between Ericsson company and Ciena company, which one has experienced at least one ransomware attack ?

Between Ericsson company and Ciena company, which one has experienced at least one data breach ?

Between Ericsson company and Ciena company, which one has experienced at least one targeted cyberattack ?

Between Ericsson company and Ciena company, which one has experienced at least one vulnerability ?

Between Ericsson company and Ciena company, which one holds the most compliance certifications ?

Between Ericsson company and Ciena company, which one holds the fewest compliance certifications ?

Between Ericsson company and Ciena company, which one has the most subsidiaries ?

Between Ericsson company and Ciena company, which one has the largest number of employees ?

Between Ericsson and Ciena, which company holds both SOC 2 Type 1 certifications ?

Between Ericsson and Ciena, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — Ericsson or Ciena ?

Which company is PCI DSS compliant — Ericsson or Ciena ?

Between Ericsson and Ciena, which company complies with HIPAA regulations for healthcare data ?

Between Ericsson and Ciena, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2026-5314

Risk Information

CVE-2026-32929

Risk Information

CVE-2026-32928

Risk Information

CVE-2026-32927

Risk Information

CVE-2026-32926

Risk Information