RHÖN-KLINIKUM AG
Company Details
Linkedin ID:
rhön-klinikum-ag
Employees number:
335
Number of followers:
6,310
NAICS:
62
Industry Type:
Homepage:
rhoen-klinikum-ag.com
IP Addresses:
21
Company ID:
RHÖ_2105620
Scan Status:
Completed
Internal validation & live display
Multiple badges & continuous verification
Faster underwriting decisions
RHÖN-KLINIKUM AG Vendor Cyber Rating & Cyber Score
rhoen-klinikum-ag.comDie RHÖN‐KLINIKUM AG ist einer der größten Gesundheitsdienstleister in Deutschland. Die Kliniken bieten exzellente Medizin mit direkter Anbindung zu Universitäten und Forschungseinrichtungen. An den fünf Standorten Campus Bad Neustadt, Klinikum Frankfurt (Oder), Universitätsklinikum Gießen und Universitätsklinikum Marburg (UKGM) sowie der Zentralklinik Bad Berka werden jährlich rund 855.000 Patienten behandelt. Über 18.100 Mitarbeitende sind im Unternehmen beschäftigt. Das innovative RHÖN-Campus-Konzept für eine sektorenübergreifende und zukunftsweisende Gesundheitsversorgung im ländlichen Raum, die konsequente Fortsetzung des schrittweisen digitalen Wandels im Unternehmen sowie die strategische Partnerschaft mit Asklepios sind wichtige Säulen der Unternehmensstrategie. Die RHÖN-KLINIKUM AG ist ein eigenständiges Unternehmen unter dem Dach der Asklepios Kliniken GmbH & Co. KGaA.
RHÖN-KLINIKUM AG A.I CyberSecurity Scoring
RHÖN-KLINIKUM AG Risk Score (AI oriented)Between 750 and 799
RHÖN-KLINIKUM AG
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
RHÖN-KLINIKUM AG Global Score (TPRM)XXXX
RHÖN-KLINIKUM AG
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
RHÖN-KLINIKUM AG Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
RHÖN-KLINIKUM AG Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for RHÖN-KLINIKUM AG
Incidents vs Hospitals and Health Care Industry Average (This Year)
No incidents recorded for RHÖN-KLINIKUM AG in 2026.
Incidents vs All-Companies Average (This Year)
No incidents recorded for RHÖN-KLINIKUM AG in 2026.
Incident Types RHÖN-KLINIKUM AG vs Hospitals and Health Care Industry Avg (This Year)
No incidents recorded for RHÖN-KLINIKUM AG in 2026.
Incident History — RHÖN-KLINIKUM AG (X = Date, Y = Severity)
RHÖN-KLINIKUM AG cyber incidents detection timeline including parent company and subsidiaries
RHÖN-KLINIKUM AG Company Subsidiaries
Die RHÖN‐KLINIKUM AG ist einer der größten Gesundheitsdienstleister in Deutschland. Die Kliniken bieten exzellente Medizin mit direkter Anbindung zu Universitäten und Forschungseinrichtungen. An den fünf Standorten Campus Bad Neustadt, Klinikum Frankfurt (Oder), Universitätsklinikum Gießen und Universitätsklinikum Marburg (UKGM) sowie der Zentralklinik Bad Berka werden jährlich rund 855.000 Patienten behandelt. Über 18.100 Mitarbeitende sind im Unternehmen beschäftigt. Das innovative RHÖN-Campus-Konzept für eine sektorenübergreifende und zukunftsweisende Gesundheitsversorgung im ländlichen Raum, die konsequente Fortsetzung des schrittweisen digitalen Wandels im Unternehmen sowie die strategische Partnerschaft mit Asklepios sind wichtige Säulen der Unternehmensstrategie. Die RHÖN-KLINIKUM AG ist ein eigenständiges Unternehmen unter dem Dach der Asklepios Kliniken GmbH & Co. KGaA.
Loading...
RHÖN-KLINIKUM AG Similar Companies
Rush University Medical Center
Rush University Medical Center is an academic medical center that includes a 671-bed hospital serving adults and children, the 61-bed Johnston R. Bowman Health Center and Rush University. Rush University is home to one of the first medical colleges in the Midwest and one of the nation's top-ranked n
As a world-class academic and health care system, Duke Health strives to transform medicine and health locally and globally through innovative scientific research, rapid translation of breakthrough discoveries, educating future clinical and scientific leaders, advocating and practicing evidence-base
Sevita
Homes and communities are where people thrive. We’ve held this belief since our founding in 1967 and have worked to make it reality for the thousands of individuals we serve. We continue that work today and are using innovation, technology, and collaboration across our organization to do more for mo
One of the largest Trusts in the UK, Guy’s and St Thomas’ NHS Foundation Trust comprises five of the UK’s best known hospitals – Guy’s, St Thomas’, Evelina London Children’s Hospital, Royal Brompton and Harefield – as well as community services in Lambeth and Southwark, all with a long history of hi
VCU Health
We are a strong, passionate team of more than 12,500 who take pride in caring for every person who comes through our doors. We lift each other up so we can provide the very best and safest care to those who need us most. Together. Every day. With the support of our university, we make up an acade
Committed to Life - We save and improve human lives with affordable, accessible, and innovative healthcare products and the highest quality in clinical care. Fresenius is a global healthcare company headquartered in Bad Homburg v. d. Höhe, Germany. In fiscal year 2024, Fresenius generated €21.5 bil
Atrium Health Wake Forest Baptist
Atrium Health Wake Forest Baptist is a nationally recognized academic medical center and health system based in Winston-Salem, NC, part of Advocate Health, the third-largest nonprofit health system in the United States. Atrium Health Wake Forest Baptist’s two main components are an integrated clin
Allina Health
People at Allina Health have a career of making a difference in the lives of the millions of patients we see each year at our 90+ clinics, 12 hospitals and through a wide variety of specialty care services in Minnesota and western Wisconsin. We’re a not-for-profit organization committed to enrichin
IHH Healthcare
A world-leading multinational healthcare provider, IHH believes that making a difference starts with our aspiration to Care. For Good. Our team of 70,000 people commit to deliver greater good to our patients, people, the public and our planet, as we live our purpose each day to touch lives and tr
.png)
RHÖN-KLINIKUM AG CyberSecurity News
March 26, 2026 11:00 PM
RHON-KLINIKUM AG With Consistent Development in Financial Year 2025
Group continues to focus on long-term growth – financial stability enables investments in medical high-tech and new care structures Increase...
March 26, 2026 10:53 PM
RHÖN-KLINIKUM Aktiengesellschaft Reports Earnings Results for the Full Year Ended December 31, 2025
RHÖN-KLINIKUM Aktiengesellschaft reported earnings results for the full year ended December 31, 2025. For the full year,...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
RHÖN-KLINIKUM AG CyberSecurity History Information
Official Website of RHÖN-KLINIKUM AG
The official website of RHÖN-KLINIKUM AG is https://www.rhoen-klinikum-ag.com/legal.
RHÖN-KLINIKUM AG’s AI-Generated Cybersecurity Score
According to Rankiteo, RHÖN-KLINIKUM AG’s AI-generated cybersecurity score is 763, reflecting their Fair security posture.
How many security badges does RHÖN-KLINIKUM AG’ have ?
According to Rankiteo, RHÖN-KLINIKUM AG currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Has RHÖN-KLINIKUM AG been affected by any supply chain cyber incidents ?
According to Rankiteo, RHÖN-KLINIKUM AG has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
Does RHÖN-KLINIKUM AG have SOC 2 Type 1 certification ?
According to Rankiteo, RHÖN-KLINIKUM AG is not certified under SOC 2 Type 1.
Does RHÖN-KLINIKUM AG have SOC 2 Type 2 certification ?
According to Rankiteo, RHÖN-KLINIKUM AG does not hold a SOC 2 Type 2 certification.
Does RHÖN-KLINIKUM AG comply with GDPR ?
According to Rankiteo, RHÖN-KLINIKUM AG is not listed as GDPR compliant.
Does RHÖN-KLINIKUM AG have PCI DSS certification ?
According to Rankiteo, RHÖN-KLINIKUM AG does not currently maintain PCI DSS compliance.
Does RHÖN-KLINIKUM AG comply with HIPAA ?
According to Rankiteo, RHÖN-KLINIKUM AG is not compliant with HIPAA regulations.
Does RHÖN-KLINIKUM AG have ISO 27001 certification ?
According to Rankiteo,RHÖN-KLINIKUM AG is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of RHÖN-KLINIKUM AG
RHÖN-KLINIKUM AG operates primarily in the Hospitals and Health Care industry.
Number of Employees at RHÖN-KLINIKUM AG
RHÖN-KLINIKUM AG employs approximately 335 people worldwide.
Subsidiaries Owned by RHÖN-KLINIKUM AG
RHÖN-KLINIKUM AG presently has no subsidiaries across any sectors.
RHÖN-KLINIKUM AG’s LinkedIn Followers
RHÖN-KLINIKUM AG’s official LinkedIn profile has approximately 6,310 followers.
NAICS Classification of RHÖN-KLINIKUM AG
RHÖN-KLINIKUM AG is classified under the NAICS code 62, which corresponds to Health Care and Social Assistance.
RHÖN-KLINIKUM AG’s Presence on Crunchbase
No, RHÖN-KLINIKUM AG does not have a profile on Crunchbase.
RHÖN-KLINIKUM AG’s Presence on LinkedIn
Yes, RHÖN-KLINIKUM AG maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/rhön-klinikum-ag.
Cybersecurity Incidents Involving RHÖN-KLINIKUM AG
As of March 30, 2026, Rankiteo reports that RHÖN-KLINIKUM AG has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
RHÖN-KLINIKUM AG has an estimated 32,297 peer or competitor companies worldwide.
RHÖN-KLINIKUM AG CyberSecurity History Information
How many cyber incidents has RHÖN-KLINIKUM AG faced ?
Total Incidents: According to Rankiteo, RHÖN-KLINIKUM AG has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at RHÖN-KLINIKUM AG ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
A vulnerability was identified in Totolink A3300R 17.0.0cu.557_b20221024. This affects the function setLanCfg of the file /cgi-bin/cstecgi.cgi of the component Parameter Handler. The manipulation of the argument lanIp leads to command injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Perl versions from 5.9.4 before 5.40.4-RC1, from 5.41.0 before 5.42.2-RC1, from 5.43.0 before 5.43.9 contain a vulnerable version of Compress::Raw::Zlib. Compress::Raw::Zlib is included in the Perl package as a dual-life core module, and is vulnerable to CVE-2026-3381 due to a vendored version of zlib which has several vulnerabilities, including CVE-2026-27171. The bundled Compress::Raw::Zlib was updated to version 2.221 in Perl blead commit c75ae9cc164205e1b6d6dbd57bd2c65c8593fe94.
References
- https://github.com/Perl/perl5/commit/c75ae9cc164205e1b6d6dbd57bd2c65c8593fe94
- https://lists.security.metacpan.org/cve-announce/msg/37638919/
- https://metacpan.org/release/PMQS/Compress-Raw-Zlib-2.221/source/Changes
- https://metacpan.org/release/SHAY/perl-5.40.4/changes
- https://metacpan.org/release/SHAY/perl-5.42.2/changes
- https://www.cve.org/CVERecord?id=CVE-2026-3381
Description
Ghidra versions prior to 12.0.3 improperly process annotation directives embedded in automatically extracted binary data, resulting in arbitrary command execution when an analyst interacts with the UI. Specifically, the @execute annotation (which is intended for trusted, user-authored comments) is also parsed in comments generated during auto-analysis (such as CFStrings in Mach-O binaries). This allows a crafted binary to present seemingly benign clickable text which, when clicked, executes attacker-controlled commands on the analyst’s machine.
Risk Information
cvss3
Base: 8.8
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Description
A critical security vulnerability in parisneo/lollms versions up to 2.2.0 allows any authenticated user to accept or reject friend requests belonging to other users. The `respond_request()` function in `backend/routers/friends.py` does not implement proper authorization checks, enabling Insecure Direct Object Reference (IDOR) attacks. Specifically, the `/api/friends/requests/{friendship_id}` endpoint fails to verify whether the authenticated user is part of the friendship or the intended recipient of the request. This vulnerability can lead to unauthorized access, privacy violations, and potential social engineering attacks. The issue has been addressed in version 2.2.0.
Risk Information
cvss3
Base: 8.3
Severity: LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L
Description
A Server-Side Request Forgery (SSRF) vulnerability exists in parisneo/lollms versions prior to 2.2.0, specifically in the `/api/files/export-content` endpoint. The `_download_image_to_temp()` function in `backend/routers/files.py` fails to validate user-controlled URLs, allowing attackers to make arbitrary HTTP requests to internal services and cloud metadata endpoints. This vulnerability can lead to internal network access, cloud metadata access, information disclosure, port scanning, and potentially remote code execution.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=rhön-klinikum-ag' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
