Cypress vulnerability reporting contact not responding?

Ask the Community
Close
Ask the Community
nav search Icon
Forums gray-arrow gray-arrow
Resources gray-arrow gray-arrow
About gray-arrow gray-arrow
Groups gray-arrow gray-arrow
nav-user Account

Tip / Sign in to post questions, reply, level up, and achieve exciting badges. Know more

cross mob

Cypress vulnerability reporting contact not responding?

MaEd_4392426
Level 1
Level 1
First like given
‎Aug 19, 2019 06:16 AM
‎Aug 19, 2019 06:16 AM
Jump to solution

Hello, I'm trying to contact Cypress regarding a vulnerability I've found in BLE PSoC 4 devices for about one week and I didn't receive any acknowledgement.

Cypress vulnerability reporting site claims that matters sent to psirt@cypress.com​ would be acknowledged right away, but no message was received by our end. I've correctly encrypted the email as required.

Is the above email the right one to report Bluetooth vulnerability matters?

As I understand, this acknowledgment from Cypress is required to file a "undisclosed" CVE request.

Thanks.

0 Likes
Subscribe
1 Solution

Re: Cypress vulnerability reporting contact not responding?

JeffreyL_71
Employee
Employee
First solution authored First reply posted First like received
‎Aug 20, 2019 04:47 AM
‎Aug 20, 2019 04:47 AM
Jump to solution

Hello,

Just a short note to let you know that Cypress PSIRT has received your report and is looking into your data.  Our PSIRT outreach system is new and we don't yet have an automated response to acknowledge receipt of reports or concerns.

I will respond additionally to your email address provided in your report with additional information.

Thank you for your patience,

Jeff Lee

PSIRT Coordinator

View solution in original post

2 Replies

Re: Cypress vulnerability reporting contact not responding?

JeffreyL_71
Employee
Employee
First solution authored First reply posted First like received
‎Aug 20, 2019 04:47 AM
‎Aug 20, 2019 04:47 AM
Jump to solution

Hello,

Just a short note to let you know that Cypress PSIRT has received your report and is looking into your data.  Our PSIRT outreach system is new and we don't yet have an automated response to acknowledge receipt of reports or concerns.

I will respond additionally to your email address provided in your report with additional information.

Thank you for your patience,

Jeff Lee

PSIRT Coordinator

Re: Cypress vulnerability reporting contact not responding?

MaEd_4392426
Level 1
Level 1
First like given
In response to JeffreyL_71
‎Aug 20, 2019 07:48 AM
‎Aug 20, 2019 07:48 AM
Jump to solution

Thank you very much.

0 Likes