photo of person typing on computer keyboard

Report a Vulnerability

Priority on Security

When it comes to security, we take our responsibilities to our customers and users very seriously. Our top priority is to guarantee that our users are kept safe to the highest degree and we encourage the security community to report vulnerabilities when discovered.

While we do our best to cover all bases when it comes to these aspects, the fact of the matter is that the digital world is a continual moving target, and for every effort we make, there’s something else we’ll miss. Those with bad intentions are always on the lookout for and looking to exploit anything we overlook, no matter how small. We encourage anyone that finds a security fault in our products to report it so that we are able to address it quickly and ensure the online safety of all of our customers and their end-users.

We understand that hackers are always on the lookout for new ways to exploit security flaws, so we must stay one step ahead of them by detecting and addressing any issues as soon as possible. We appreciate your assistance in keeping us all safer by reporting any problems you may encounter. We hope you never have a reason to report an issue, but if you do, we thank you for your help in making everyone more secure!

Vulnerability disclosure policy

We believe in and support working with the research and security practitioner community to enhance our online security. We applaud good-intentioned and ethical cybersecurity researchers who carry out investigative work into security flaws.

We are committed to:

What to expect when reporting a vulnerability

You will receive an acknowledgment response following the submission of your vulnerability report, which is generally within 24 hours.

The team will address the reported vulnerability as soon as possible. They’ll notify you whether::

If the problem requires additional work, it will be assigned to the proper Temasys team or vendor(s), with help from our security staff.

The significance of a bug’s impact and its exploit complexity are considered when assigning priority. Vulnerability reports may take some time to evaluate or address. You are welcome to inquire about the status of the procedure, but please do not ask more than once every 14 days. This is necessary so that our personnel may focus on the reports as much as possible.

Once the reported vulnerability is resolved or remediation work is scheduled, the Security Team will notify you and invite you to confirm that the solution covers the vulnerability adequately.

Feedback

You are invited to give us feedback on the:

We’ll use your comments in strict confidence to help us improve our reporting, services, and vulnerability management practices.

Guidance for Security Researchers

Security researchers must not:

Bug Bounty

Temasys does not offer a paid bug bounty program as standard.

However, when appropriate, we will make efforts to express our thanks to security researchers who take the time and effort to investigate and report security flaws to us in accordance with this policy.

Submit a Report

Please fill out the form below or open a ticket with us on our support portal.

We’d love to hear your ideas and talk about how we might work together.

Our latest posts