Vulnerability Response Process - Uniview

Home

Vulnerability Response Process

Report

We monitor security problems and receive vulnerability reports initiatively.

Verification

Safety laboratory and related products verification, confirm and evaluate risk levels for the security problem.

Work out

We formulate mitigation measures, develop for fixing the vulnerability, and develop security early warning strategy.

Disclosure

Official disclose vulnerability information when security problem have precautionary measures and fix patches.

The Security Emergency Response Center will strictly control the spread of vulnerability information and limit it to the person who handles the vulnerability. It also requires the vulnerability reporter to keep the vulnerability confidential until it is publicly disclosed.

The Security Emergency Response Center provides Base Metrics and Temporal Metrics for vulnerabilities based on the CVSS (Common Vulnerability Scoring System). Based on Customers’ environment, they can get Environmental Metrics according to their own needs.

Uniview uses CVE (Common Vulnerability and Exposures) and CNCVE to reference third-party vulnerability information.

Back