ISO 27001 Certificate
SOC 1 Type I Certificate
SOC 2 Type II Certificate
PCI DSS
HIPAA
RGPD
Internal validation & live display
Multiple badges & continuous verification
Faster underwriting decisions

Airbus Aircraft Company CyberSecurity Posture

airbus.com
ISOSOC2 Type 1SOC2 Type 2PCI DSSHIPAAGDPR

We hope you have a pleasant journey with us, as we share the latest news and views on our family of aircraft, sustainable aviation and much more.

Airbus Aircraft A.I CyberSecurity Scoring

Airbus Aircraft

Company Details

Linkedin ID:

airbus

Website:

http://www.airbus.com

Employees number:

427

Number of followers:

762,684

NAICS:

3364

Industry Type:

Aviation and Aerospace Component Manufacturing

Homepage:

airbus.com

IP Addresses:

0

Company ID:

AIR_2856983

Scan Status:

In-progress

AI scoreAirbus Aircraft Risk Score (AI oriented)

Between 800 and 849

https://images.rankiteo.com/companyimages/airbus.jpeg
Airbus Aircraft Aviation and Aerospace Component Manufacturing
Updated:
  • Powered by our proprietary A.I cyber incident model
  • Insurance preferes TPRM score to calculate premium
globalscoreAirbus Aircraft Global Score (TPRM)

XXXX

https://images.rankiteo.com/companyimages/airbus.jpeg
Airbus Aircraft Aviation and Aerospace Component Manufacturing
  • Instant access to detailed risk factors
  • Benchmark vs. industry & size peers
  • Vulnerabilities
  • Findings

Airbus Aircraft Company CyberSecurity News & History

Past Incidents
1
Attack Types
1
EntityTypeSeverityImpactSeenBlog DetailsIncident DetailsView
AirbusVulnerability1006/2025
AIR819071525
Rankiteo Explanation :
Attack threatening the organization’s existence

Description: Security researchers have confirmed active exploitation of a critical vulnerability in Wing FTP Server, just one day after technical details were publicly disclosed. The flaw, tracked as CVE-2025-47812, has received the maximum CVSS score of 10.0 and enables unauthenticated remote code execution with root or SYSTEM privileges. Organizations using Wing FTP Server for file transfer operations include major corporations such as Airbus, indicating the potential for significant impact across critical infrastructure sectors.

Airbus
Vulnerability
Severity: 100
Impact:
Seen: 6/2025
Blog:
AIR819071525
Rankiteo Explanation
Attack threatening the organization’s existence

Description: Security researchers have confirmed active exploitation of a critical vulnerability in Wing FTP Server, just one day after technical details were publicly disclosed. The flaw, tracked as CVE-2025-47812, has received the maximum CVSS score of 10.0 and enables unauthenticated remote code execution with root or SYSTEM privileges. Organizations using Wing FTP Server for file transfer operations include major corporations such as Airbus, indicating the potential for significant impact across critical infrastructure sectors.

Ailogo

Airbus Aircraft Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

🔒
Incident Predictions locked
Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

🔒
A.I. Risk Score Predictions locked
Access Monitoring Plan
statics

Underwriter Stats for Airbus Aircraft

Incidents vs Aviation and Aerospace Component Manufacturing Industry Average (This Year)

No incidents recorded for Airbus Aircraft in 2025.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Airbus Aircraft in 2025.

Incident Types Airbus Aircraft vs Aviation and Aerospace Component Manufacturing Industry Avg (This Year)

No incidents recorded for Airbus Aircraft in 2025.

Incident History — Airbus Aircraft (X = Date, Y = Severity)

Airbus Aircraft cyber incidents detection timeline including parent company and subsidiaries

Airbus Aircraft Company Subsidiaries

SubsidiaryImage

We hope you have a pleasant journey with us, as we share the latest news and views on our family of aircraft, sustainable aviation and much more.

similarCompanies

Airbus Aircraft Similar Companies

Spirit AeroSystems
spiritaero.com

Spirit AeroSystems defines and energizes modern aerospace manufacturing by delivering uncompromising quality, breakthrough innovations and high-skilled production expertise to commercial, defense and business aerospace programs. Spirit AeroSystems is the world’s largest tier-one manufacturer and sup

Security Report Compare
Blue Origin
blueorigin.com

We are building a road to space for the benefit of Earth, humanity’s blue origin. Our team is focused on radically reducing the cost of access to space and harnessing its vast resources while mobilizing future generations to realize this mission. Blue Origin builds reusable rocket engines, launch ve

Security Report Compare
Embraer
embraer.com

A global aerospace company headquartered in Brazil, Embraer has businesses in Commercial and Executive Aviation, Defense & Security, and Agricultural Aviation. The company designs, develops, manufactures and markets aircraft and systems, providing Services and Support to customer after-sales. Sinc

Security Report Compare
Textron
textron.com

Textron Inc. is a multi-industry company that leverages its global network of aircraft, defense, industrial and finance businesses to provide customers with innovative solutions and services. Textron is known around the world for its powerful brands such as Bell, Cessna, Beechcraft, Pipistrel, Jacob

Security Report Compare
Bombardier
bombardier.com

Bombardier is a global leader in aviation, focused on designing, manufacturing, and servicing the world's most exceptional business jets. Bombardier’s Challenger and Global aircraft families are renowned for their cutting-edge innovation, cabin design, performance, and reliability. Bombardier has a

Security Report Compare
B/E Aerospace
collinsaerospace.com

B/E Aerospace is now part of Rockwell Collins. With the acquisition of B/E Aerospace in April 2017, Rockwell Collins is now a world leader in designing, developing and manufacturing cabin interior products and services that deliver innovation, reliability and efficiency. Our broad range of offeri

Security Report Compare
Federal Aviation Administration
http://www.faa.gov/

The FAA is on the leading edge of a new frontier in commercial space transportation, building the next generation (NextGen) of satellite-based navigation systems, and fostering the safe integration of unmanned aerial systems into our airspace. We can only dream of what the next 50 years of American

Security Report Compare

At CAE, we equip people in critical roles with the expertise and solutions to create a safer world. As a technology company, we digitalize the physical world, deploying simulation training and critical operations support solutions. Above all else, we empower pilots, airlines, defence and security fo

Security Report Compare

Safran is an international high-technology group, operating in the aviation (propulsion, equipment and interiors), defense and space markets. Its core purpose is to contribute to a safer, more sustainable world, where air transport is more environmentally friendly, comfortable and accessible. Safran

Security Report Compare
newsone

Airbus Aircraft CyberSecurity News

November 18, 2025 10:47 AM
Services: training & technical aviation support

Explore the full scope of Airbus Services. We provide technical aviation services, pilot training, aircraft maintenance, and digital solutions.

Read Article
November 13, 2025 08:00 AM
Combating information warfare: How Airbus is helping win the fight for the truth

In today's world, information warfare and disinformation are all too common. The Airbus-lead EUCINF project supports the fight for the...

Read Article
October 03, 2025 07:00 AM
Internships in France

Join us as an intern in a vibrant environment. Collaborate with talented and inspired people who are as passionate about their job as they...

Read Article
August 04, 2025 07:00 AM
Aviation Challenges 2025: Cybersecurity, Supply Chain, and Sustainability

The aviation sector is the bedrock of worldwide connectivity. Aviation: Benefits Beyond Borders reports that the industry is responsible for...

Read Article
July 18, 2025 07:00 AM
Next-gen aerospace cybersecurity to be developed in UK with Airbus

Airbus and UK researchers are working on cybersecurity for aircraft.

Read Article
July 11, 2025 07:00 AM
France enhances armed forces cybersecurity training with Airbus

The French DGA initiated a contract with Airbus DS to advance training and education of cybersecurity professionals across armed forces.

Read Article
July 07, 2025 07:00 AM
Swansea University drives next-gen cybersecurity in aerospace systems

Swansea University, Novel Engineering Consultants Ltd (Novel), and Airbus Endeavr Wales—a unique initiative between the Welsh Government and...

Read Article
June 20, 2025 07:00 AM
‘Violation of standard airworthiness…’: Days before Air India crash, DGCA warned airline of breaching saf

Air India faced scrutiny from the DGCA for operating Airbus aircraft with overdue emergency equipment checks, potentially violating safety standards.

Read Article
April 08, 2025 07:00 AM
Indigenous Airbus A320 flight simulator inaugurated in Pune by MoS aviation Murlidhar Mohol

An indigenous Airbus A320 flight simulator, developed by Yoskies Aviation Institute in Baner, was inaugurated by Union Minister of State for Civil Aviation,...

Read Article
faq

Frequently Asked Questions

Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.

Airbus Aircraft CyberSecurity History Information

Official Website of Airbus Aircraft

The official website of Airbus Aircraft is http://www.airbus.com.

Airbus Aircraft’s AI-Generated Cybersecurity Score

According to Rankiteo, Airbus Aircraft’s AI-generated cybersecurity score is 825, reflecting their Good security posture.

How many security badges does Airbus Aircraft’ have ?

According to Rankiteo, Airbus Aircraft currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Does Airbus Aircraft have SOC 2 Type 1 certification ?

According to Rankiteo, Airbus Aircraft is not certified under SOC 2 Type 1.

Does Airbus Aircraft have SOC 2 Type 2 certification ?

According to Rankiteo, Airbus Aircraft does not hold a SOC 2 Type 2 certification.

Does Airbus Aircraft comply with GDPR ?

According to Rankiteo, Airbus Aircraft is not listed as GDPR compliant.

Does Airbus Aircraft have PCI DSS certification ?

According to Rankiteo, Airbus Aircraft does not currently maintain PCI DSS compliance.

Does Airbus Aircraft comply with HIPAA ?

According to Rankiteo, Airbus Aircraft is not compliant with HIPAA regulations.

Does Airbus Aircraft have ISO 27001 certification ?

According to Rankiteo,Airbus Aircraft is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Industry Classification of Airbus Aircraft

Airbus Aircraft operates primarily in the Aviation and Aerospace Component Manufacturing industry.

Number of Employees at Airbus Aircraft

Airbus Aircraft employs approximately 427 people worldwide.

Subsidiaries Owned by Airbus Aircraft

Airbus Aircraft presently has no subsidiaries across any sectors.

Airbus Aircraft’s LinkedIn Followers

Airbus Aircraft’s official LinkedIn profile has approximately 762,684 followers.

NAICS Classification of Airbus Aircraft

Airbus Aircraft is classified under the NAICS code 3364, which corresponds to Aerospace Product and Parts Manufacturing.

Airbus Aircraft’s Presence on Crunchbase

No, Airbus Aircraft does not have a profile on Crunchbase.

Airbus Aircraft’s Presence on LinkedIn

Yes, Airbus Aircraft maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/airbus.

Cybersecurity Incidents Involving Airbus Aircraft

As of December 11, 2025, Rankiteo reports that Airbus Aircraft has experienced 1 cybersecurity incidents.

Number of Peer and Competitor Companies

Airbus Aircraft has an estimated 2,679 peer or competitor companies worldwide.

What types of cybersecurity incidents have occurred at Airbus Aircraft ?

Incident Types: The types of cybersecurity incidents that have occurred include Vulnerability.

How does Airbus Aircraft detect and respond to cybersecurity incidents ?

Detection and Response: The company detects and responds to cybersecurity incidents through an containment measures with disabling or restricting http/https access to the wing ftp web portal, containment measures with disabling anonymous login functionality, containment measures with monitoring session directories for suspicious .lua files, containment measures with implementing network segmentation to limit exposure, and remediation measures with upgrading to wing ftp server version 7.4.4 or later, and communication strategy with vendor has reportedly contacted customers via email with upgrade guidance, and network segmentation with implementing network segmentation to limit exposure, and enhanced monitoring with monitoring session directories for suspicious .lua files..

Incident Details

Can you provide details on each incident ?

Incident : Remote Code Execution

measurementExposure impactImpact

Title: Active Exploitation of CVE-2025-47812 in Wing FTP Server

Description: A critical vulnerability in Wing FTP Server, tracked as CVE-2025-47812, is being actively exploited. The flaw allows unauthenticated remote code execution with root or SYSTEM privileges.

Date Detected: 2025-06-30

Date Publicly Disclosed: 2025-07-01

Type: Remote Code Execution

Attack Vector: Improper handling of null bytes in the Wing FTP Server’s web interface

Vulnerability Exploited: CVE-2025-47812

Motivation: Gain complete control over the system

What are the most common types of attacks the company has faced ?

Common Attack Types: The most common types of attacks the company has faced is Vulnerability.

How does the company identify the attack vectors used in incidents ?

Identification of Attack Vectors: The company identifies the attack vectors used in incidents through Anonymous FTP accounts.

Impact of the Incidents

What was the impact of each incident ?

Incident : Remote Code Execution AIR819071525

Systems Affected: Wing FTP Server installations

Which entities were affected by each incident ?

Incident : Remote Code Execution AIR819071525

Entity Name: ['Airbus', 'Reuters', 'U.S. Air Force']

Entity Type: Corporation

Industry: Aerospace, Media, Defense

Location: United StatesChinaGermanyUnited KingdomIndia

Response to the Incidents

What measures were taken in response to each incident ?

Incident : Remote Code Execution AIR819071525

Containment Measures: Disabling or restricting HTTP/HTTPS access to the Wing FTP web portalDisabling anonymous login functionalityMonitoring session directories for suspicious .lua filesImplementing network segmentation to limit exposure

Remediation Measures: Upgrading to Wing FTP Server version 7.4.4 or later

Communication Strategy: Vendor has reportedly contacted customers via email with upgrade guidance

Network Segmentation: ['Implementing network segmentation to limit exposure']

Enhanced Monitoring: Monitoring session directories for suspicious .lua files

Data Breach Information

What measures does the company take to prevent data exfiltration ?

Prevention of Data Exfiltration: The company takes the following measures to prevent data exfiltration: Upgrading to Wing FTP Server version 7.4.4 or later, .

How does the company handle incidents involving personally identifiable information (PII) ?

Handling of PII Incidents: The company handles incidents involving personally identifiable information (PII) through by disabling or restricting http/https access to the wing ftp web portal, disabling anonymous login functionality, monitoring session directories for suspicious .lua files, implementing network segmentation to limit exposure and .

Lessons Learned and Recommendations

What lessons were learned from each incident ?

Incident : Remote Code Execution AIR819071525

Lessons Learned: Organizations should prioritize upgrading to the latest version of Wing FTP Server, conduct thorough security assessments, and implement additional monitoring to detect potential compromise indicators.

What recommendations were made to prevent future incidents ?

Incident : Remote Code Execution AIR819071525

Recommendations: Immediate patching and implementation of protective measures such as disabling anonymous login and monitoring session directories.

What are the key lessons learned from past incidents ?

Key Lessons Learned: The key lessons learned from past incidents are Organizations should prioritize upgrading to the latest version of Wing FTP Server, conduct thorough security assessments, and implement additional monitoring to detect potential compromise indicators.

What recommendations has the company implemented to improve cybersecurity ?

Implemented Recommendations: The company has implemented the following recommendations to improve cybersecurity: Immediate patching and implementation of protective measures such as disabling anonymous login and monitoring session directories..

References

Where can I find more information about each incident ?

Incident : Remote Code Execution AIR819071525

Source: Huntress

Date Accessed: 2025-07-01

Incident : Remote Code Execution AIR819071525

Source: Censys

Incident : Remote Code Execution AIR819071525

Source: Shadowserver Foundation

Where can stakeholders find additional resources on cybersecurity best practices ?

Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: HuntressDate Accessed: 2025-07-01, and Source: Censys, and Source: Shadowserver Foundation.

Investigation Status

How does the company communicate the status of incident investigations to stakeholders ?

Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through Vendor Has Reportedly Contacted Customers Via Email With Upgrade Guidance.

Initial Access Broker

How did the initial access broker gain entry for each incident ?

Incident : Remote Code Execution AIR819071525

Entry Point: Anonymous FTP accounts

Post-Incident Analysis

What were the root causes and corrective actions taken for each incident ?

Incident : Remote Code Execution AIR819071525

Root Causes: Improper handling of null bytes in Wing FTP Server’s web interface

Corrective Actions: Upgrading to Wing FTP Server version 7.4.4 or later

What is the company's process for conducting post-incident analysis ?

Post-Incident Analysis Process: The company's process for conducting post-incident analysis is described as Monitoring Session Directories For Suspicious .Lua Files, .

What corrective actions has the company taken based on post-incident analysis ?

Corrective Actions Taken: The company has taken the following corrective actions based on post-incident analysis: Upgrading to Wing FTP Server version 7.4.4 or later.

Additional Questions

Incident Details

What was the most recent incident detected ?

Most Recent Incident Detected: The most recent incident detected was on 2025-06-30.

What was the most recent incident publicly disclosed ?

Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2025-07-01.

Impact of the Incidents

What was the most significant system affected in an incident ?

Most Significant System Affected: The most significant system affected in an incident was Wing FTP Server installations.

Response to the Incidents

What containment measures were taken in the most recent incident ?

Containment Measures in Most Recent Incident: The containment measures taken in the most recent incident was Disabling or restricting HTTP/HTTPS access to the Wing FTP web portalDisabling anonymous login functionalityMonitoring session directories for suspicious .lua filesImplementing network segmentation to limit exposure.

Lessons Learned and Recommendations

What was the most significant lesson learned from past incidents ?

Most Significant Lesson Learned: The most significant lesson learned from past incidents was Organizations should prioritize upgrading to the latest version of Wing FTP Server, conduct thorough security assessments, and implement additional monitoring to detect potential compromise indicators.

What was the most significant recommendation implemented to improve cybersecurity ?

Most Significant Recommendation Implemented: The most significant recommendation implemented to improve cybersecurity was Immediate patching and implementation of protective measures such as disabling anonymous login and monitoring session directories..

References

What is the most recent source of information about an incident ?

Most Recent Source: The most recent source of information about an incident are Huntress, Shadowserver Foundation and Censys.

Initial Access Broker

What was the most recent entry point used by an initial access broker ?

Most Recent Entry Point: The most recent entry point used by an initial access broker was an Anonymous FTP accounts.

cve

Latest Global CVEs (Not Company-Specific)

Description

FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions prior to 16.0.96 and 17.0.1 through 17.0.9 have a weak default password. By default, this is a 6 digit numeric value which can be brute forced. (This is the app_password parameter). Depending on local configuration, this password could be the extension, voicemail, user manager, DPMA or EPM phone admin password. This issue is fixed in versions 16.0.96 and 17.0.10.

Published
Date
2025-12-10
Updated
Date
2025-12-10
Risk Information
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Neuron is a PHP framework for creating and orchestrating AI Agents. In versions 2.8.11 and below, the MySQLWriteTool executes arbitrary SQL provided by the caller using PDO::prepare() + execute() without semantic restrictions. This is consistent with the name (“write tool”), but in an LLM/agent context it becomes a high-risk capability: prompt injection or indirect prompt manipulation can cause execution of destructive queries such as DROP TABLE, TRUNCATE, DELETE, ALTER, or privilege-related statements (subject to DB permissions). Deployments that expose an agent with MySQLWriteTool enabled to untrusted input and/or run the tool with a DB user that has broad privileges are impacted. This issue is fixed in version 2.8.12.

Published
Date
2025-12-10
Updated
Date
2025-12-10
Risk Information
cvss3
Base: 9.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
References
Description

Neuron is a PHP framework for creating and orchestrating AI Agents. Versions 2.8.11 and below use MySQLSelectTool, which is vulnerable to Read-Only Bypass. MySQLSelectTool is intended to be a read-only SQL tool (e.g., for LLM agent querying, however, validation based on the first keyword (e.g., SELECT) and a forbidden-keyword list does not block file-writing constructs such as INTO OUTFILE / INTO DUMPFILE. As a result, an attacker who can influence the tool input (e.g., via prompt injection through a public agent endpoint) may write arbitrary files to the DB server if the MySQL/MariaDB account has the FILE privilege and server configuration permits writes to a useful location (e.g., a web-accessible directory). This issue is fixed in version 2.8.12.

Published
Date
2025-12-10
Updated
Date
2025-12-10
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N
References
Description

Okta Java Management SDK facilitates interactions with the Okta management API. In versions 11.0.0 through 20.0.0, race conditions may arise from concurrent requests using the ApiClient class. This could cause a status code or response header from one request’s response to influence another request’s response. This issue is fixed in version 20.0.1.

Published
Date
2025-12-10
Updated
Date
2025-12-10
Risk Information
cvss3
Base: 8.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L
References
Description

The Auth0 Next.js SDK is a library for implementing user authentication in Next.js applications. When using versions 4.11.0 through 4.11.2 and 4.12.0, simultaneous requests on the same client may result in improper lookups in the TokenRequestCache for the request results. This issue is fixed in versions 4.11.2 and 4.12.1.

Published
Date
2025-12-10
Updated
Date
2025-12-10
Risk Information
cvss3
Base: 5.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:N
References

Access Data Using Our API

SubsidiaryImage

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=airbus' -H 'apikey: YOUR_API_KEY_HERE'
Try It API Documentation rapidRapid

What Do We Measure ?

revertimgrevertimgrevertimgrevertimg
Incident
revertimgrevertimgrevertimgrevertimg
Finding
revertimgrevertimgrevertimgrevertimg
Grade
revertimgrevertimgrevertimgrevertimg
Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network Security

Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)

Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)

Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat Intelligence

Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Top LeftTop RightBottom LeftBottom Right
Rankiteo
By Rankiteo
View on G2.com
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
View latest reports → View all security reports →
Users Love Us Badge