Dahuasecurity.comではCookieならびに類似のテクノロジーを使用しています。Dahuaでは、Webサイトを正常に機能させるために機能性Cookieが使用され、ユーザ体験を最適化するために分析Cookieが使用されています。当社Webサイト外で、サードパーティのCookieによってデータが収集される場合もあります。「 同意します」をクリックするか、このWebサイトの使用を継続すると、Cookieを設定し、それに含まれる個人データが処理されることに同意したと見なされます。Cookieの使用に関する 詳細情報。

Vulnerability Response Process

753

Vulnerability Reporting and Response Process:


Dahua PSIRT strictly controls the circulation of reported information on a need to know basis. We also request researcher to keep information about any vulnerabilities discovered confidential until it is publicly disclosed.



Dahua PSIRT releases two kinds of security bulletin:

SA (Security Advisory): Provide relevant verified technical information, including but not limited to the mitigation measure and solutions.
SN (Security Notice): Provide key information related to the subject of notice, when a potential vulnerability is reported but not yet verified.

Dahua PSIRT adopts CVSSv3 standard (https://www.first.org/cvss/specification-document) to assess a vulnerability on Base Score and Temporal Score. Customer could calculate the Environmental Score according to their own environment if necessary.

Dahua make reference to vulnerability disclosed in other media or information sources using CVE(Common Vulnerability and Exposures) and CNCVE. Dahua PSIRT releases two kinds of security bulletin whenever necessary, including SN (Security Notice) and SA (Security Advisory).