Comparison Overview

The University of Edinburgh

Old College, South Bridge, Edinburgh, GB, EH8 9YL

Last Update: 2026-04-01

Between 750 and 799

Imagine what you could do at a world-leading university that is globally recognised for its teaching, research and innovation. The University of Edinburgh has been providing students with world-class teaching for more than 425 years, unlocking the potential of some of the world's leading thinkers since 1583. Choose to study with us and you will be investing in an education that will help you build a successful future.

NAICS: 5417

NAICS Definition: Scientific Research and Development Services

Employees: 15,886

Subsidiaries: 17

12-month incidents

0

Known data breaches

0

Attack type number

0

View Profile

UCL

Gower Street, London, WC1E 6BT, London, Greater London, GB

Last Update: 2026-03-28

Between 750 and 799

http://www.ucl.ac.uk/

UCL (University College London) is London's leading multidisciplinary university, ranked 9th in the QS World University Rankings. Established in 1826 UCL opened up education in England for the first time to students of any race, class or religion and was also the first university to welcome female students on equal terms with men. Today UCL is made up of remarkable people: eminent professors and exceptional students. Academic excellence and conducting research that addresses real-world problems inform our ethos to this day. To see more photos of UCL you can visit our Flickr Gallery: www.flickr.com/photos/uclnews/sets/ To view videos of UCL and our work, you can subscribe to our YouTube Channel: http://www.youtube.com/user/UCLTV Looking for a job at UCL? Find out more about working with us and view the latest vacancies: https://www.ucl.ac.uk/jobs

NAICS: 5417

NAICS Definition: Scientific Research and Development Services

Employees: 24,088

Subsidiaries: 3

12-month incidents

0

Known data breaches

0

Attack type number

1

https://images.rankiteo.com/companyimages/university-of-edinburgh.jpeg

The University of Edinburgh

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

https://images.rankiteo.com/companyimages/university-college-london.jpeg

UCL

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Research Services Industry Average (This Year)

No incidents recorded for The University of Edinburgh in 2026.

Incidents vs Research Services Industry Average (This Year)

No incidents recorded for UCL in 2026.

Incident History — The University of Edinburgh (X = Date, Y = Severity)

The University of Edinburgh cyber incidents detection timeline including parent company and subsidiaries

Incident History — UCL (X = Date, Y = Severity)

UCL cyber incidents detection timeline including parent company and subsidiaries

The University of Edinburgh

Incidents

No Incident

UCL

Incidents

Date Detected: 06/2017

Type:Ransomware

Attack Vector: Malware

Motivation: Financial Gain

Blog: Blog

The University of Edinburgh company demonstrates a stronger AI Cybersecurity Score compared to UCL company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

UCL company has historically faced a number of disclosed cyber incidents, whereas The University of Edinburgh company has not reported any.

In the current year, UCL company and The University of Edinburgh company have not reported any cyber incidents.

UCL company has confirmed experiencing a ransomware attack, while The University of Edinburgh company has not reported such incidents publicly.

Neither UCL company nor The University of Edinburgh company has reported experiencing a data breach publicly.

Neither UCL company nor The University of Edinburgh company has reported experiencing targeted cyberattacks publicly.

Neither The University of Edinburgh company nor UCL company has reported experiencing or disclosing vulnerabilities publicly.

Neither The University of Edinburgh nor UCL holds any compliance certifications.

Neither company holds any compliance certifications.

The University of Edinburgh company has more subsidiaries worldwide compared to UCL company.

UCL company employs more people globally than The University of Edinburgh company, reflecting its scale as a Research Services.

Neither The University of Edinburgh nor UCL holds SOC 2 Type 1 certification.

Neither The University of Edinburgh nor UCL holds SOC 2 Type 2 certification.

Neither The University of Edinburgh nor UCL holds ISO 27001 certification.

Neither The University of Edinburgh nor UCL holds PCI DSS certification.

Neither The University of Edinburgh nor UCL holds HIPAA certification.

Neither The University of Edinburgh nor UCL holds GDPR certification.

Description

A vulnerability was found in Nothings stb up to 1.26. Impacted is the function stbtt_InitFont_internal in the library stb_truetype.h of the component TTF File Handler. Performing a manipulation results in out-of-bounds read. Remote exploitation of the attack is possible. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss2

Base: 5.0

Severity: LOW

AV:N/AC:L/Au:N/C:N/I:N/A:P

cvss3

Base: 4.3

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

cvss4

Base: 5.3

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read in VS6ComFile!get_macro_mem_COM. Opening a crafted V7 file may lead to information disclosure from the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain a stack-based buffer overflow in VS6ComFile!CSaveData::_conv_AnimationItem. Opening a crafted V7 file may lead to arbitrary code execution on the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6MemInIF!set_temp_type_default. Opening a crafted V7 file may lead to information disclosure from the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6ComFile!load_link_inf. Opening a crafted V7 file may lead to information disclosure from the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

The University of Edinburgh

VS

UCL

The University of Edinburgh

UCL

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Research Services Industry Average (This Year)

Incidents vs Research Services Industry Average (This Year)

Incident History — The University of Edinburgh (X = Date, Y = Severity)

Incident History — UCL (X = Date, Y = Severity)

Notable Incidents

No Incident

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2026-5314

Risk Information

CVE-2026-32929

Risk Information

CVE-2026-32928

Risk Information

CVE-2026-32927

Risk Information

CVE-2026-32926

Risk Information

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

The University of Edinburgh

VS

UCL

The University of Edinburgh

UCL

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Research Services Industry Average (This Year)

Incidents vs Research Services Industry Average (This Year)

Incident History — The University of Edinburgh (X = Date, Y = Severity)

Incident History — UCL (X = Date, Y = Severity)

Notable Incidents

No Incident

🔒 Incident : Ransomware UCL1210311022

FAQ

Between The University of Edinburgh company and UCL company, which one has the best AI Cybersecurity Score ?

Between The University of Edinburgh company and UCL company, which one has experienced more cyber incidents in the past ?

Between The University of Edinburgh company and UCL company, which one has experienced more cyber incidents this year ?

Between The University of Edinburgh company and UCL company, which one has experienced at least one ransomware attack ?

Between The University of Edinburgh company and UCL company, which one has experienced at least one data breach ?

Between The University of Edinburgh company and UCL company, which one has experienced at least one targeted cyberattack ?

Between The University of Edinburgh company and UCL company, which one has experienced at least one vulnerability ?

Between The University of Edinburgh company and UCL company, which one holds the most compliance certifications ?

Between The University of Edinburgh company and UCL company, which one holds the fewest compliance certifications ?

Between The University of Edinburgh company and UCL company, which one has the most subsidiaries ?

Between The University of Edinburgh company and UCL company, which one has the largest number of employees ?

Between The University of Edinburgh and UCL, which company holds both SOC 2 Type 1 certifications ?

Between The University of Edinburgh and UCL, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — The University of Edinburgh or UCL ?

Which company is PCI DSS compliant — The University of Edinburgh or UCL ?

Between The University of Edinburgh and UCL, which company complies with HIPAA regulations for healthcare data ?

Between The University of Edinburgh and UCL, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2026-5314

Risk Information

CVE-2026-32929

Risk Information

CVE-2026-32928

Risk Information

CVE-2026-32927

Risk Information

CVE-2026-32926

Risk Information