Alibaba Qwen3-Max vs Cohere Command A

Detailed comparison for LLMs

AlibabaCohere

On Guardion's LLM vulnerability Benchmark, Cohere Command A is the more secure of the two: Qwen3-Max scores 28.0% and Command A scores 26.0% on attack success rate (ASR) (lower is better). One or both scores are estimated from public safety evaluations pending a Guardion benchmark run.

Head-to-Head Overview

Command A is the overall winner in this comparison!

Attack Success Rate (lower is safer)

ASR for Alibaba Qwen3-Max vs Cohere Command A. Green marks the safer model on each metric. Only the overall score is available for estimated models.

Overall (ASR)

Qwen3-Max
28.0%
Command A
26.0%

TAP Attack Method (ASR)

Qwen3-Max
Command A
61.2%

Crescendo Attack Method (ASR)

Qwen3-Max
Command A
50.5%

Key Highlights

  • Cohere Command A has a lower Overall (ASR).

Security Profile

Outward is better on every axis.

OverallTAPCrescendo
Qwen3-Max
Command A
Full security profile
Alibaba Qwen3-Max
Full security profile
Cohere Command A

Frequently asked questions

Is Alibaba Qwen3-Max or Cohere Command A more secure?

On Guardion's LLM vulnerability Benchmark, Cohere Command A is the more secure of the two: Qwen3-Max scores 28.0% and Command A scores 26.0% on attack success rate (ASR) (lower is better). One or both scores are estimated from public safety evaluations pending a Guardion benchmark run.

What is the attack success rate (ASR) of Qwen3-Max vs Command A?

Qwen3-Max has a 28.0% ASR and Command A has a 26.0% ASR — the share of adversarial prompts that succeed across zero-shot, TAP, and Crescendo attacks. Lower is safer.

How were Qwen3-Max and Command A tested?

Both were red-teamed with the HarmBench framework across zero-shot, TAP (Tree of Attacks with Pruning), and Crescendo multi-turn attacks, scored by Attack Success Rate.

Related Comparisons