【System】StarCharge Security Response Center Introduce
Notice Number:StarCharge Security Response Center IntroduceAuthor:StarChargePublication Date:2023/08/16
StarCharge Security Response Center is a platform responsible for accepting, handling and publicly disclosing security vulnerabilities related to StarCharge products and solutions.
StarCharge attaches great importance to the safety of its products and businesses. We promise that we will assign special personnel to follow up, analyze and handle the problems fed back by each reporter, and give timely responses.
StarCharge supports the responsible vulnerability disclosure and handling process, and respects the research results of every security researcher. At the same time, before StarCharge issues formal security recommendations, the vulnerability submitter must keep the details of the vulnerability confidential.
You can send an email to cybersecurity@wbstar.com To report the vulnerabilities you have found. We will follow up and feed back the security vulnerabilities you have reported as soon as possible. In order to protect the security of users and enterprises, we hope that you will not disclose or spread the vulnerability before it is repaired. The StarCharge Security Response Center will give feedback to enthusiastic users according to the "StarCharge Security Vulnerability Evaluation Criteria".
The StarCharge Security Response Center adopts the CVSSv3.1 standard and gives a base score and a temporary score for each security vulnerability assessment.
See the following link for specific CVSSv3.1 standards: https://www.first.org/cvss/v3.1/specification-document. StarCharge Security Response Center uniformly uses CVE (Common Vulnerability and Exposures) to reference vulnerability information outside the StarCharge vulnerability disclosure website.
Processing flow:
Response processing:
After you have submitted your report, we will respond to your report within 5 working days and aim to triage your report within 10 working days. We will also aim to keep you informed of our progress.
We will notify you when the reported vulnerability is remediated, and you may be invited to confirm that the solution covers the vulnerability adequately. According to the priority of the vulnerability, we will fix the vulnerability in 60days and publish the solution on this website.
Once your vulnerability has been resolved, we welcome requests to disclose your report. We would like to unify guidance to affected users, so please do continue to coordinate public release with us.
