Vulnerability Disclosure

July 3rd 2022

Report a security or privacy vulnerability

If you believe you have discovered a security or privacy vulnerability in an DEHA VIETNAM product, please report it to us.

I. How to report a security or privacy vulnerability

If you believe you have discovered a security or privacy vulnerability that affects DEHA VIETNAM products, software, services, or web servers, please report it to us. We welcome reports from everyone, including security researchers, developers, and customers.

To report a security or privacy vulnerability, please send an email to info@deha-soft.com that includes:

  1. The specific product and software version(s) which you believe are affected
  2. A description of the behavior you observed as well as the behavior that you expected
  3. A numbered list of steps required to reproduce the issue and a video demonstration, if the steps may be hard to follow

Please encrypt sensitive information that you send by email.

You’ll receive a reply from DEHA VIETNAM to acknowledge that we received your report, and we’ll contact you if we need more information.

II. How DEHA VIETNAM handles these reports

For the protection of our customers, DEHA VIETNAM doesn’t disclose, discuss, or confirm security issues until our investigation is complete and any necessary updates are generally available.

DEHA VIETNAM uses security advisories and our security-announce mailing list to publish information about security fixes in our products and to publicly credit people or organizations that have reported security issues to us.

For more information on CVD, please review the information provided in the following links: https://www.iso.org/standard/72311.html

Security Advisories

DEHA VIETNAM Security Advisories are a supplement to the DEHA VIETNAM Security bulletins. They address security changes that may not require a security bulletin but that may still affect customers’ overall security.

DEHA VIETNAM Security Advisories are a way for DEHA VIETNAM to communicate security information to customers about issues that may not be classified as vulnerabilities and may not require a security bulletin. Each advisory is accompanied by an DEHA VIETNAM Knowledge Base Article to provide additional information about any changes or updates being delivered with the advisory’s release.

Help protect your computing environment by keeping up to date on DEHA VIETNAM technical security notifications. For more information, see DEHA VIETNAM Technical Security Notifications.