Vulnerability disclosure

The safety of our customers is one of CROSSCALL top priorities. It guides us through every stage of our product development process. Even after our products are released, we do everything we can to respond quickly to any potential security flaws or vulnerabilities in our products.

CROSSCALL to the principles of responsible vulnerability disclosure and encourages you to report any security vulnerabilities you have discovered in good faith using the reporting form.


CREATE A REPORT 

 

CROSSCALL Commitments

Responsible disclosure of security vulnerabilities helps ensure customer safety.
CROSSCALL carefullyCROSSCALL every report it receives and is committed to addressing potential security vulnerabilities as quickly as possible.

  • Process each form carefully and inform you that it has been received within 7 calendar days;
  • Work with the reporter to understand the vulnerability;
  • Implement the necessary actions to quickly resolve the potential vulnerability;
  • Distribute patches to consumers as quickly as possible, depending on the vulnerability being addressed. This information will be provided to you as part of our communications.
  • Publish the vulnerabilities that have been addressed.

 

Declarant's commitments

  • Comply with all applicable laws in the context of your IT security research activities;
  • Use the form to report potential vulnerabilities as thoroughly as possible and provide sufficient information so that CROSSCALL reproduce the vulnerability and resolve it quickly;
  • As soon as a vulnerability is discovered, please maintain confidentiality regarding this security breach while we process the distribution of the patch on our equipment, in particular to avoid any personal data breaches, disruption of internal or external servers, and destruction of data or physical property.
  • Do not use vulnerabilities for commercial or professional purposes and, in general, do not take advantage of the vulnerability discovered.

Please note that the discovery of a vulnerability does not, under any circumstances, imply any intellectual property rights or claims regarding CROSSCALL software or products.

If you would like to contact CROSSCALL questions about your products, technical support, or an after-sales service issue, please use the appropriate form.