What is your policy in addressing vulnerabilities?

Here is the policy of SD Elements for dealing with published or known vulnerabilities:

  • The Security Compass team continuously monitors for vulnerabilities in its software.
  • For critical vulnerabilities, we publish an update, patch, or a remediation plan out of band with a target of availability of 2 days since discovery.
  • For all other vulnerabilities, a patch is packaged into the regular product updates, available every 6 weeks.
Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request