RHÖN-KLINIKUM AG
Company Details
Linkedin ID:
rhön-klinikum-ag
Employees number:
335
Number of followers:
6,310
NAICS:
62
Industry Type:
Homepage:
rhoen-klinikum-ag.com
IP Addresses:
21
Company ID:
RHÖ_2105620
Scan Status:
Completed
Internal validation & live display
Multiple badges & continuous verification
Faster underwriting decisions
RHÖN-KLINIKUM AG Vendor Cyber Rating & Cyber Score
rhoen-klinikum-ag.comDie RHÖN‐KLINIKUM AG ist einer der größten Gesundheitsdienstleister in Deutschland. Die Kliniken bieten exzellente Medizin mit direkter Anbindung zu Universitäten und Forschungseinrichtungen. An den fünf Standorten Campus Bad Neustadt, Klinikum Frankfurt (Oder), Universitätsklinikum Gießen und Universitätsklinikum Marburg (UKGM) sowie der Zentralklinik Bad Berka werden jährlich rund 855.000 Patienten behandelt. Über 18.100 Mitarbeitende sind im Unternehmen beschäftigt. Das innovative RHÖN-Campus-Konzept für eine sektorenübergreifende und zukunftsweisende Gesundheitsversorgung im ländlichen Raum, die konsequente Fortsetzung des schrittweisen digitalen Wandels im Unternehmen sowie die strategische Partnerschaft mit Asklepios sind wichtige Säulen der Unternehmensstrategie. Die RHÖN-KLINIKUM AG ist ein eigenständiges Unternehmen unter dem Dach der Asklepios Kliniken GmbH & Co. KGaA.
RHÖN-KLINIKUM AG A.I CyberSecurity Scoring
RHÖN-KLINIKUM AG Risk Score (AI oriented)Between 750 and 799
RHÖN-KLINIKUM AG
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
RHÖN-KLINIKUM AG Global Score (TPRM)XXXX
RHÖN-KLINIKUM AG
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
RHÖN-KLINIKUM AG Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
RHÖN-KLINIKUM AG Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for RHÖN-KLINIKUM AG
Incidents vs Hospitals and Health Care Industry Average (This Year)
No incidents recorded for RHÖN-KLINIKUM AG in 2026.
Incidents vs All-Companies Average (This Year)
No incidents recorded for RHÖN-KLINIKUM AG in 2026.
Incident Types RHÖN-KLINIKUM AG vs Hospitals and Health Care Industry Avg (This Year)
No incidents recorded for RHÖN-KLINIKUM AG in 2026.
Incident History — RHÖN-KLINIKUM AG (X = Date, Y = Severity)
RHÖN-KLINIKUM AG cyber incidents detection timeline including parent company and subsidiaries
RHÖN-KLINIKUM AG Company Subsidiaries
Die RHÖN‐KLINIKUM AG ist einer der größten Gesundheitsdienstleister in Deutschland. Die Kliniken bieten exzellente Medizin mit direkter Anbindung zu Universitäten und Forschungseinrichtungen. An den fünf Standorten Campus Bad Neustadt, Klinikum Frankfurt (Oder), Universitätsklinikum Gießen und Universitätsklinikum Marburg (UKGM) sowie der Zentralklinik Bad Berka werden jährlich rund 855.000 Patienten behandelt. Über 18.100 Mitarbeitende sind im Unternehmen beschäftigt. Das innovative RHÖN-Campus-Konzept für eine sektorenübergreifende und zukunftsweisende Gesundheitsversorgung im ländlichen Raum, die konsequente Fortsetzung des schrittweisen digitalen Wandels im Unternehmen sowie die strategische Partnerschaft mit Asklepios sind wichtige Säulen der Unternehmensstrategie. Die RHÖN-KLINIKUM AG ist ein eigenständiges Unternehmen unter dem Dach der Asklepios Kliniken GmbH & Co. KGaA.
Loading...
RHÖN-KLINIKUM AG Similar Companies
Johns Hopkins Medicine is a governing structure for the University’s School of Medicine and the health system, coordinating their research, teaching, patient care, and related enterprises. The Johns Hopkins Hospital opened in 1889, followed four years later by the university’s School of Medicine
Elevance Health
Fueled by our bold purpose to improve the health of humanity, we are transforming from a traditional health benefits organization into a lifetime trusted health partner. Our nearly 100,000 associates serve more than 118 million people, at every stage of health. We address a full range of needs wi
For more than half a century, UCLA Health has provided the best in healthcare and the latest in medical technology to the people of Los Angeles and throughout the world. Comprised of Ronald Reagan UCLA Medical Center, UCLA Medical Center Santa Monica, Resnick Neuropsychiatric Hospital at UCLA, UCLA
Rede D'Or
A Rede D’Or é a maior rede de saúde da América Latina. São 79 hospitais e mais de 60 clínicas oncológicas com presença nos estados de AL, BA, CE, DF, MA, MG, MS, PA, PB, PE, PR, RJ, SE, SP. Referência em qualidade técnica, a Rede D’Or atua em serviços complementares como banco de sangue, diális
Penn Medicine is a world leader in academic medicine, setting the standard for cutting-edge research, compassionate patient care, and the education of future health care professionals. From founding the nation’s first hospital and medical school to pioneering Nobel Prize-winning mRNA vaccines and li
A purpose-driven company, Clariane is the leading European community for care in times of vulnerability. Our Group’s purpose “To take care of each person’s humanity in times of vulnerability” is inspired by our three core values: trust, responsibility and initiative. With facilities at the heart
The University of Texas Medical Branch
The first academic health center in Texas opened its doors in 1891 and today has four campuses, five health sciences schools, seven institutes for advanced study, a research enterprise that includes one of only two national laboratories dedicated to the safe study of infectious threats to human heal
Keralty
Anteriormente Organización Sanitas Internacional, Keralty es un grupo empresarial de valor en salud, con más de 40 años de experiencia conformado por empresas de aseguramiento y prestación de servicios de salud y una red propia hospitalaria y asistencial. También forman parte de Keralty institucio
Cincinnati Children's
Cincinnati Children’s, a nonprofit academic medical center established in 1883, offers services from well-child care to treatment for the most rare and complex conditions. It is the Department of Pediatrics at the University of Cincinnati College of Medicine and trains more than 600 residents and cl
.png)
RHÖN-KLINIKUM AG CyberSecurity News
March 26, 2026 11:00 PM
RHON-KLINIKUM AG With Consistent Development in Financial Year 2025
Group continues to focus on long-term growth – financial stability enables investments in medical high-tech and new care structures Increase...
March 26, 2026 10:53 PM
RHÖN-KLINIKUM Aktiengesellschaft Reports Earnings Results for the Full Year Ended December 31, 2025
RHÖN-KLINIKUM Aktiengesellschaft reported earnings results for the full year ended December 31, 2025. For the full year,...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
RHÖN-KLINIKUM AG CyberSecurity History Information
Official Website of RHÖN-KLINIKUM AG
The official website of RHÖN-KLINIKUM AG is https://www.rhoen-klinikum-ag.com/legal.
RHÖN-KLINIKUM AG’s AI-Generated Cybersecurity Score
According to Rankiteo, RHÖN-KLINIKUM AG’s AI-generated cybersecurity score is 763, reflecting their Fair security posture.
How many security badges does RHÖN-KLINIKUM AG’ have ?
According to Rankiteo, RHÖN-KLINIKUM AG currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Has RHÖN-KLINIKUM AG been affected by any supply chain cyber incidents ?
According to Rankiteo, RHÖN-KLINIKUM AG has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
Does RHÖN-KLINIKUM AG have SOC 2 Type 1 certification ?
According to Rankiteo, RHÖN-KLINIKUM AG is not certified under SOC 2 Type 1.
Does RHÖN-KLINIKUM AG have SOC 2 Type 2 certification ?
According to Rankiteo, RHÖN-KLINIKUM AG does not hold a SOC 2 Type 2 certification.
Does RHÖN-KLINIKUM AG comply with GDPR ?
According to Rankiteo, RHÖN-KLINIKUM AG is not listed as GDPR compliant.
Does RHÖN-KLINIKUM AG have PCI DSS certification ?
According to Rankiteo, RHÖN-KLINIKUM AG does not currently maintain PCI DSS compliance.
Does RHÖN-KLINIKUM AG comply with HIPAA ?
According to Rankiteo, RHÖN-KLINIKUM AG is not compliant with HIPAA regulations.
Does RHÖN-KLINIKUM AG have ISO 27001 certification ?
According to Rankiteo,RHÖN-KLINIKUM AG is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of RHÖN-KLINIKUM AG
RHÖN-KLINIKUM AG operates primarily in the Hospitals and Health Care industry.
Number of Employees at RHÖN-KLINIKUM AG
RHÖN-KLINIKUM AG employs approximately 335 people worldwide.
Subsidiaries Owned by RHÖN-KLINIKUM AG
RHÖN-KLINIKUM AG presently has no subsidiaries across any sectors.
RHÖN-KLINIKUM AG’s LinkedIn Followers
RHÖN-KLINIKUM AG’s official LinkedIn profile has approximately 6,310 followers.
NAICS Classification of RHÖN-KLINIKUM AG
RHÖN-KLINIKUM AG is classified under the NAICS code 62, which corresponds to Health Care and Social Assistance.
RHÖN-KLINIKUM AG’s Presence on Crunchbase
No, RHÖN-KLINIKUM AG does not have a profile on Crunchbase.
RHÖN-KLINIKUM AG’s Presence on LinkedIn
Yes, RHÖN-KLINIKUM AG maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/rhön-klinikum-ag.
Cybersecurity Incidents Involving RHÖN-KLINIKUM AG
As of March 30, 2026, Rankiteo reports that RHÖN-KLINIKUM AG has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
RHÖN-KLINIKUM AG has an estimated 32,297 peer or competitor companies worldwide.
RHÖN-KLINIKUM AG CyberSecurity History Information
How many cyber incidents has RHÖN-KLINIKUM AG faced ?
Total Incidents: According to Rankiteo, RHÖN-KLINIKUM AG has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at RHÖN-KLINIKUM AG ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
A vulnerability was identified in Totolink A3300R 17.0.0cu.557_b20221024. This affects the function setLanCfg of the file /cgi-bin/cstecgi.cgi of the component Parameter Handler. The manipulation of the argument lanIp leads to command injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Perl versions from 5.9.4 before 5.40.4-RC1, from 5.41.0 before 5.42.2-RC1, from 5.43.0 before 5.43.9 contain a vulnerable version of Compress::Raw::Zlib. Compress::Raw::Zlib is included in the Perl package as a dual-life core module, and is vulnerable to CVE-2026-3381 due to a vendored version of zlib which has several vulnerabilities, including CVE-2026-27171. The bundled Compress::Raw::Zlib was updated to version 2.221 in Perl blead commit c75ae9cc164205e1b6d6dbd57bd2c65c8593fe94.
References
- https://github.com/Perl/perl5/commit/c75ae9cc164205e1b6d6dbd57bd2c65c8593fe94
- https://lists.security.metacpan.org/cve-announce/msg/37638919/
- https://metacpan.org/release/PMQS/Compress-Raw-Zlib-2.221/source/Changes
- https://metacpan.org/release/SHAY/perl-5.40.4/changes
- https://metacpan.org/release/SHAY/perl-5.42.2/changes
- https://www.cve.org/CVERecord?id=CVE-2026-3381
Description
Ghidra versions prior to 12.0.3 improperly process annotation directives embedded in automatically extracted binary data, resulting in arbitrary command execution when an analyst interacts with the UI. Specifically, the @execute annotation (which is intended for trusted, user-authored comments) is also parsed in comments generated during auto-analysis (such as CFStrings in Mach-O binaries). This allows a crafted binary to present seemingly benign clickable text which, when clicked, executes attacker-controlled commands on the analyst’s machine.
Risk Information
cvss3
Base: 8.8
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Description
A critical security vulnerability in parisneo/lollms versions up to 2.2.0 allows any authenticated user to accept or reject friend requests belonging to other users. The `respond_request()` function in `backend/routers/friends.py` does not implement proper authorization checks, enabling Insecure Direct Object Reference (IDOR) attacks. Specifically, the `/api/friends/requests/{friendship_id}` endpoint fails to verify whether the authenticated user is part of the friendship or the intended recipient of the request. This vulnerability can lead to unauthorized access, privacy violations, and potential social engineering attacks. The issue has been addressed in version 2.2.0.
Risk Information
cvss3
Base: 8.3
Severity: LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L
Description
A Server-Side Request Forgery (SSRF) vulnerability exists in parisneo/lollms versions prior to 2.2.0, specifically in the `/api/files/export-content` endpoint. The `_download_image_to_temp()` function in `backend/routers/files.py` fails to validate user-controlled URLs, allowing attackers to make arbitrary HTTP requests to internal services and cloud metadata endpoints. This vulnerability can lead to internal network access, cloud metadata access, information disclosure, port scanning, and potentially remote code execution.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=rhön-klinikum-ag' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
