Overview
Incydr investigates all reports of security vulnerabilities affecting Incydr products and services. If you believe you've found a security vulnerability, we'd like to work with you to investigate it.
Contact Technical Support Engineers for technical support
The Incydr security team does not provide technical support. If you need help with something other than reporting a potential security vulnerability, contact our Technical Support Engineers.
Report a security vulnerability
To help us understand the nature and scope of the potential vulnerability, visit https://bugcrowd.com/3905fe58-e58e-491d-87dc-a8a9264eb662/external/report and complete the form with as much information as possible. When you're done, click Report Vulnerability to submit your report to Incydr.
What happens after I report a vulnerability?
When Incydr receives a vulnerability report, we triage it to determine if we should open a more in-depth investigation.
If we confirm that a report has identified a security vulnerability that meets our CVE criteria, Incydr takes the following steps:
- We create a patch or update that fixes the security vulnerability in our product.
- We inform our customers about the security vulnerability and how to remedy it. To protect the security of our customers, we don't share information about a vulnerability until it has been fully investigated and a patch or update is available that resolves the issue.
- We publish a security advisory to the Mitre Common Vulnerabilities and Exposures (CVE) list.
Comments
0 comments
Please sign in to leave a comment.