Login

Report Security Vulnerability

Flare is committed to resolving any issues that may compromise the security of our products and services as quickly as possible. We take security vulnerabilities very seriously and protecting customer data is one of our top priorities.

How to report a vulnerability

If you think you’ve found a security vulnerability in Flare products, services or online platforms, please contact us immediately via email. Keep your findings confidential and disclose the relevant information to us in a responsible manner by encrypting your report with our PGP key.
Please also advise if you have communicated the vulnerability to CERT or other parties and provide us with any reference numbers.

Email contact

[email protected]

PGP Key

c8bf8a0c

Fingerprint

d060 0c78 450f 1e99 cecd 62d9 e473 6f09 c8bf 8a0c

What to include in your report

Rules of engagement

Please do not...

Excluded issues

The following items are known issues or accepted risks and are out of scope for this vulnerability reporting program.

Next steps

Step 1

Please maintain confidentiality and do not make your research public until we have completed our investigation and implemented patches or other mitigations.

Step 2

The Flare security team will endeavour to contact you within 72 hours of you reporting the security vulnerability and keep you informed on our progress towards resolving the vulnerability.

Step 3

We will notify you when the vulnerability has been patched or mitigated. Your name can be added to our list of acknowledgments if your submitted vulnerability is valid.

Acknowledgements

Flare would like to thank the following researchers who have helped us improve security through our responsible disclosure program.

Report Security Vulnerability Flare is committed to resolving any issues that may compromise the security of our products and services as quickly as possible. We take security vulnerabilities very seriously and protecting customer data is one of our top priorities. How to report a vulnerability If you think you’ve found a security vulnerability in Flare […]