Software iterative lifecycle

How to report a security issue:

If you find a vulnerability in a Beatbot Security product or have a security issue to report, please fill out the vulnerability report form.

When receiving a vulnerability report, we will take a series of steps to resolve the issue internally. All reported vulnerabilities are scored according to the Beatbot IOT Vulnerability Rating Criteria.

Reporters are required to provide confidential details about the vulnerability.

We will investigate and verify the reported vulnerability.

We will fix vulnerabilities and validate them across Beatbot security product lines.

We will release an OTA update to Beatbot Security products.

We will monitor the robustness of Beatbot security products after updates.

After receiving the report, we will acknowledge it within 3 business days and conduct an initial assessment. Evaluation will be completed within 7 business days, and we will either fix the vulnerability or devise a remediation plan.

When to fix:

Critical risk vulnerabilities will be fixed within 7 business days. High and medium risk vulnerabilities will be fixed within 30 business days. Low risk vulnerabilities will be fixed within 180 business days. Please note that some vulnerabilities may be subject to environmental or hardware limitations. Final timelines will be determined based on actual circumstances.

To protect our customers, We will provide at least 3 years of security update support for Beatbot products. The support period will not be shortened after publication. If the defined support period is extended, we will update the lists below as soon as possible to help you check whether your device can still receive security updates.If you discovered a security or privacy vulnerability affecting Beatbot devices, software, services, or web servers, please report it to us. We welcome reports from anyone, including security researchers, developers, and customers. Beatbot will promptly and cautiously address security vulnerabilities in our products. We will take necessary measures to minimize customer risk, provide timely information, and deliver vulnerability fixes and mitigations required to address security threats in Beatbot devices, software, or web servers. We greatly appreciate anyone who gives us the opportunity to improve our products and services and better protect our users. Thank you for collaborating with us through the above process.

Email address:

softsecurity@beatbot.com