2 Replies Latest reply on Aug 20, 2019 7:48 AM by MaEd_4392426

    Cypress vulnerability reporting contact not responding?

    MaEd_4392426

      Hello, I'm trying to contact Cypress regarding a vulnerability I've found in BLE PSoC 4 devices for about one week and I didn't receive any acknowledgement.

      Cypress vulnerability reporting site claims that matters sent to psirt@cypress.com would be acknowledged right away, but no message was received by our end. I've correctly encrypted the email as required.

       

      Is the above email the right one to report Bluetooth vulnerability matters?

      As I understand, this acknowledgment from Cypress is required to file a "undisclosed" CVE request.

       

      Thanks.