The Vulnerability Reporting Guideline

On 7 October 2019 the National Cyber Security Centre SK-CERT has published The Vulnerability Reporting Guideline.

This guideline is a tool for security researchers, software developers, hardware manufacturers as well as for the general public. It provides a detailed procedure and recommended steps for reporting newly discovered vulnerabilities and also a procedure for reporting already existing vulnerabilities found on systems and services being operated.

„Creation of a comprehensive guideline to vulnerability reporting is the first important step in setting standards for responsible reporting of problems on products and services in both the private and public sectors. Compliance with the basic rules on vulnerability reporting helps to prevent the abuse of vulnerabilities and minimize threats to operations such as critical state services“ said the Director of the National Cyber Security Centre SK-CERT Mr. Rastislav Janota.

The Guideline is available for free at the website of the National Cyber Security Centre SK-CERT