CAE
Company Details
Linkedin ID:
cae
Website:
Employees number:
11,828
Number of followers:
304,805
NAICS:
3364
Industry Type:
Homepage:
cae.com
IP Addresses:
0
Company ID:
CAE_9030060
Scan Status:
In-progress
CAE Company CyberSecurity Posture
cae.com
At CAE, we equip people in critical roles with the expertise and solutions to create a safer world. As a technology company, we digitalize the physical world, deploying simulation training and critical operations support solutions. Above all else, we empower pilots, airlines, defence and security forces to perform at their best every day and when the stakes are the highest. Around the globe, we’re everywhere customers need us to be with more than 13,000 employees in approximately 250 sites and training locations in over 40 countries. CAE represents more than 75 years of industry firsts—the highest-fidelity flight, mission simulators and training programs powered by digital technologies. We embed sustainability in everything we do. Today and tomorrow, we’ll make sure our customers are ready for the moments that matter.
CAE A.I CyberSecurity Scoring
CAE Risk Score (AI oriented)Between 750 and 799
CAE
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
CAE Global Score (TPRM)XXXX
CAE
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
CAE Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
CAE Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for CAE
Incidents vs Aviation and Aerospace Component Manufacturing Industry Average (This Year)
No incidents recorded for CAE in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for CAE in 2025.
Incident Types CAE vs Aviation and Aerospace Component Manufacturing Industry Avg (This Year)
No incidents recorded for CAE in 2025.
Incident History — CAE (X = Date, Y = Severity)
CAE cyber incidents detection timeline including parent company and subsidiaries
CAE Company Subsidiaries
At CAE, we equip people in critical roles with the expertise and solutions to create a safer world. As a technology company, we digitalize the physical world, deploying simulation training and critical operations support solutions. Above all else, we empower pilots, airlines, defence and security forces to perform at their best every day and when the stakes are the highest. Around the globe, we’re everywhere customers need us to be with more than 13,000 employees in approximately 250 sites and training locations in over 40 countries. CAE represents more than 75 years of industry firsts—the highest-fidelity flight, mission simulators and training programs powered by digital technologies. We embed sustainability in everything we do. Today and tomorrow, we’ll make sure our customers are ready for the moments that matter.
Loading...
CAE Similar Companies
Textron Inc. is a multi-industry company that leverages its global network of aircraft, defense, industrial and finance businesses to provide customers with innovative solutions and services. Textron is known around the world for its powerful brands such as Bell, Cessna, Beechcraft, Pipistrel, Jacob
Embraer
A global aerospace company headquartered in Brazil, Embraer has businesses in Commercial and Executive Aviation, Defense & Security, and Agricultural Aviation. The company designs, develops, manufactures and markets aircraft and systems, providing Services and Support to customer after-sales. Sinc
NASA - National Aeronautics and Space Administration
For more than 60 years, NASA has been breaking barriers to achieve the seemingly impossible—from walking on the Moon to pushing the boundaries of human spaceflight farther than ever before. We work in space and around the world in laboratories and wind tunnels, on airfields and in control rooms to e
B/E Aerospace
B/E Aerospace is now part of Rockwell Collins. With the acquisition of B/E Aerospace in April 2017, Rockwell Collins is now a world leader in designing, developing and manufacturing cabin interior products and services that deliver innovation, reliability and efficiency. Our broad range of offeri
Safran
Safran is an international high-technology group, operating in the aviation (propulsion, equipment and interiors), defense and space markets. Its core purpose is to contribute to a safer, more sustainable world, where air transport is more environmentally friendly, comfortable and accessible. Safran
Federal Aviation Administration
The FAA is on the leading edge of a new frontier in commercial space transportation, building the next generation (NextGen) of satellite-based navigation systems, and fostering the safe integration of unmanned aerial systems into our airspace. We can only dream of what the next 50 years of American
We are building a road to space for the benefit of Earth, humanity’s blue origin. Our team is focused on radically reducing the cost of access to space and harnessing its vast resources while mobilizing future generations to realize this mission. Blue Origin builds reusable rocket engines, launch ve
Bombardier
Bombardier is a global leader in aviation, focused on designing, manufacturing, and servicing the world's most exceptional business jets. Bombardier’s Challenger and Global aircraft families are renowned for their cutting-edge innovation, cabin design, performance, and reliability. Bombardier has a
Airbus
Airbus pioneers sustainable aerospace for a safe and united world. The Company constantly innovates to provide efficient and technologically-advanced solutions in aerospace, defence, and connected services. In commercial aircraft, Airbus designs and manufactures modern and fuel-efficient airliners
.png)
CAE CyberSecurity News
November 05, 2025 08:00 AM
University of Houston Earns National Redesignation for Cyber Research Excellence
The University of Houston has once again been recognized by the National Centers of Academic Excellence in Cybersecurity program for Cyber...
September 19, 2025 07:00 AM
WSU designated as center of excellence in cyber research
Washington State University has been named a National Center of Academic Excellence in Cyber Research (CAE-R) by the U.S. National Security...
August 26, 2025 07:00 AM
KU designated National Center of Academic Excellence in Cyber Research
LAWRENCE — Researchers and faculty members at the University of Kansas' Department of Electrical Engineering & Computer Science and...
August 19, 2025 07:00 AM
SRU earns NCAE-C Cyber Defense designation
As an institution at the forefront of preparing professionals to enter the highly skilled cybersecurity workforce, Slippery Rock…
June 18, 2025 07:00 AM
MassBay Recognized for Cybersecurity Excellence, Becoming the First Community College in Massachusetts Named a National Center of Academic Excellence in Cyber Defense
MassBay Community College was recently recognized by the National Centers of Academic Excellence in Cybersecurity (NCAE-C), earning the designation of a Center...
June 05, 2025 07:00 AM
SF designated a Center for Academic Excellence in Cyber Defense
Santa Fe College's A.S. in IT Security has been designated as a Center of Academic Excellence in Cyber Defense. The NSA CAE designation was...
May 12, 2025 07:00 AM
SBU Recognized as National Center of Academic Excellence in Cybersecurity Research
Stony Brook University has been officially designated as a National Center of Academic Excellence in Cybersecurity Research (CAE-R) by the...
April 25, 2025 07:00 AM
SLU designated key role in cyber defense
Saint Louis University has been designated a National Center of Academic Excellence in Cyber Defense (CAE-CD) by the National Security...
April 21, 2025 07:00 AM
Carnegie Mellon University Re-Designated as a National Center for Academic Excellence in Cybersecurity for Cyber Research through 2029 and Cyber Operations through 2030 - Information Networking Institute - College of Engineering
Under the leadership of Information Networking Institute (INI) Director Dr. Dena Haritos Tsamitis, with support from INI faculty members Dr.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
CAE CyberSecurity History Information
Official Website of CAE
The official website of CAE is http://www.cae.com.
CAE’s AI-Generated Cybersecurity Score
According to Rankiteo, CAE’s AI-generated cybersecurity score is 773, reflecting their Fair security posture.
How many security badges does CAE’ have ?
According to Rankiteo, CAE currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does CAE have SOC 2 Type 1 certification ?
According to Rankiteo, CAE is not certified under SOC 2 Type 1.
Does CAE have SOC 2 Type 2 certification ?
According to Rankiteo, CAE does not hold a SOC 2 Type 2 certification.
Does CAE comply with GDPR ?
According to Rankiteo, CAE is not listed as GDPR compliant.
Does CAE have PCI DSS certification ?
According to Rankiteo, CAE does not currently maintain PCI DSS compliance.
Does CAE comply with HIPAA ?
According to Rankiteo, CAE is not compliant with HIPAA regulations.
Does CAE have ISO 27001 certification ?
According to Rankiteo,CAE is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of CAE
CAE operates primarily in the Aviation and Aerospace Component Manufacturing industry.
Number of Employees at CAE
CAE employs approximately 11,828 people worldwide.
Subsidiaries Owned by CAE
CAE presently has no subsidiaries across any sectors.
CAE’s LinkedIn Followers
CAE’s official LinkedIn profile has approximately 304,805 followers.
NAICS Classification of CAE
CAE is classified under the NAICS code 3364, which corresponds to Aerospace Product and Parts Manufacturing.
CAE’s Presence on Crunchbase
No, CAE does not have a profile on Crunchbase.
CAE’s Presence on LinkedIn
Yes, CAE maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/cae.
Cybersecurity Incidents Involving CAE
As of December 11, 2025, Rankiteo reports that CAE has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
CAE has an estimated 2,679 peer or competitor companies worldwide.
CAE CyberSecurity History Information
How many cyber incidents has CAE faced ?
Total Incidents: According to Rankiteo, CAE has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at CAE ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions prior to 16.0.96 and 17.0.1 through 17.0.9 have a weak default password. By default, this is a 6 digit numeric value which can be brute forced. (This is the app_password parameter). Depending on local configuration, this password could be the extension, voicemail, user manager, DPMA or EPM phone admin password. This issue is fixed in versions 16.0.96 and 17.0.10.
Risk Information
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Neuron is a PHP framework for creating and orchestrating AI Agents. In versions 2.8.11 and below, the MySQLWriteTool executes arbitrary SQL provided by the caller using PDO::prepare() + execute() without semantic restrictions. This is consistent with the name (“write tool”), but in an LLM/agent context it becomes a high-risk capability: prompt injection or indirect prompt manipulation can cause execution of destructive queries such as DROP TABLE, TRUNCATE, DELETE, ALTER, or privilege-related statements (subject to DB permissions). Deployments that expose an agent with MySQLWriteTool enabled to untrusted input and/or run the tool with a DB user that has broad privileges are impacted. This issue is fixed in version 2.8.12.
Risk Information
cvss3
Base: 9.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
Description
Neuron is a PHP framework for creating and orchestrating AI Agents. Versions 2.8.11 and below use MySQLSelectTool, which is vulnerable to Read-Only Bypass. MySQLSelectTool is intended to be a read-only SQL tool (e.g., for LLM agent querying, however, validation based on the first keyword (e.g., SELECT) and a forbidden-keyword list does not block file-writing constructs such as INTO OUTFILE / INTO DUMPFILE. As a result, an attacker who can influence the tool input (e.g., via prompt injection through a public agent endpoint) may write arbitrary files to the DB server if the MySQL/MariaDB account has the FILE privilege and server configuration permits writes to a useful location (e.g., a web-accessible directory). This issue is fixed in version 2.8.12.
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N
Description
Okta Java Management SDK facilitates interactions with the Okta management API. In versions 11.0.0 through 20.0.0, race conditions may arise from concurrent requests using the ApiClient class. This could cause a status code or response header from one request’s response to influence another request’s response. This issue is fixed in version 20.0.1.
Risk Information
cvss3
Base: 8.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L
Description
The Auth0 Next.js SDK is a library for implementing user authentication in Next.js applications. When using versions 4.11.0 through 4.11.2 and 4.12.0, simultaneous requests on the same client may result in improper lookups in the TokenRequestCache for the request results. This issue is fixed in versions 4.11.2 and 4.12.1.
Risk Information
cvss3
Base: 5.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:N
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=cae' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
