securityadvisory  

Security Advisory

Vulnerability Response

Safeguarding against security issues is a top priority for us, and we welcome anyone with a security background to report potential security vulnerabilities to help us improve the security of our products and services.

Vulnerability Response and Disclosure Process

  1. Receive: Monitor and promptly assign received vulnerabilities.
  2. Verify: Verify the vulnerability and confirm the exploitability and impact.
  3. Develop Solution: Provide effective solutions or risk remediation measures.
  4. Confirm Scope: Investigate and confirm the scope of affected products.
  5. Release Security Advisory: Review and publish the security advisory (SA) for the vulnerability.

Report Vulnerabilities

Please report any security vulnerabilities via email to: marketing@botslab.com

Important Note

Although we encourage the investigation of potential security breaches, we cannot tolerate any activity that may interfere with legitimate users or violate applicable computer abuse, cybersecurity, and data protection regulations. Therefore, the following activities are prohibited:

  • Modification or destruction of data
  • Service disruption or degradation, such as DoS
  • Disclosure of personal, proprietary, or financial information

Response Time

We'll respond within 3 working days to any vulnerabilities you submit. (Actual vulnerability response time may vary depending on the risk level and complexity of the vulnerability.)

Vulnerability Disclosure Instructions

When an external party discovers or is concerned about a potential vulnerability but we have not yet fully confirmed it, we will disclose basic information about the vulnerability and our investigation via email.

The vulnerability information shall be kept confidential until Botslab releases the formal security advisory to the public.

When the vulnerability has been confirmed and fixed, new firmware will be released along with a change log describing the vulnerabilities that have been resolved.

Product Support Policy

We strive to provide continuous security updates for our products. These updates typically include the latest patches, vulnerability fixes, and other improvements.

We generally maintain security updates for at least two years from the launch date of a product. However, update timelines may vary by product. Please refer to our announcements for the latest information.

We will regularly publish and update Botslab product security information on this page to help you stay informed.

Product Support Illustration

Vulnerability Repair Record

Vulnerability Repair Record Illustration