Report a vulnerability!
Found a vulnerability? Not sure what to do next? We’re here to help! Read the instructions below and then click the link to go to our ticketing system. One of our secretariat council members will work with you through the process!
Step 1: Is it a vulnerability? Make sure what you found meets the requirements and is not just a misconfiguration.
Step 2: Submit your vulnerability! Make sure you know:
- Make
- Model
- Firmware version(s)
- Description of vulnerability
- Any documents to back up your findings
- Whether you’d like to be anonymous
Note: we can’t take anonymous reports, but we can work to keep your identity private throughout the process.
Step 3: The council will receive your report, investigate it, and communicate with you about next steps.
Step 4: If needed, the council will create a vulnerability report and distribute it publicly
Nothing to report? Connect with us anyway!
Of course we have social media too. Come find us.