General Product Safety / Vulnerability Disclosure (PSIRT)

Report a Security Vulnerability

Product safety is our highest priority. Despite careful development and regular testing, security vulnerabilities can never be completely ruled out. If you discover a security vulnerability in our products or related online-services, we kindly ask you to report it to us in a responsible manner.
This enables us to assess potential risks quickly and take appropriate corrective actions.

How to contact us

Security vulnerabilities can be reportet to us through the following channels:

Information required

To help us process your report as efficiently as possible, please include the following information:

  • Affected Machine
  • Description of the vulnerability
  • Steps to reproduce the issue
  • Potential Impact (e. g. data loss, unauthorized access)
  • Screenshots, if applicable

Coordinated Vulnerability Disclosure

We support the principle of Coordinated Vulnerability Disclosure.

Therfore, please

  • treat any vulnerability as confidential until we provide a suitable solution
  • avoid active exploitation of vulnerabilities
  • refrain from unauthorized access, modification, deletion or downloading data

Vulnerability reports shall be reported in good faith and in accordance with the principles outlined above. Each report will be carefully reviewed and treated as confidential.

Scope

This policy applies to all machines developed and supplied by our company, as well as any related online-services.

Out of scope:

  • Components, software or services, which were not developed or provided by BURKHARDT+WEBER.

Privacy and Data Protection

Any data provided as part of a vulnerability report will be used solely for the purpose of processing and investigating the reported security issue and will be handled in accordance with applicable data protection laws.

For more information, please refer to our Privacy Policy:

Privacy Policy

General Product Safety / Vulnerability Disclosure (PSIRT)

Contact Form

    [cf7-simple-turnstile]