If you have discovered a vulnerability in a Scorability product or service, please contact security@scorability.com.
Once we have received a vulnerability report, the following steps are taken:
- Scorability confirms receipt of the issue with the reporter, and then opens an investigation to verify the vulnerability.
- If the reporting entity is unable to produce information needed to verify the vulnerability, the issue will be closed.
- Upon verification of an issue, Scorability establishes a plan to remediate the vulnerability.
- After implementing the remediation, the issue will be closed.
Throughout this process, Scorability will operate as transparently as is practical and will maintain open lines of communication until the issue is closed.