Report a Vulnerability
The REN-ISAC can facilitate the ethical and responsible disclosure of vulnerabilities within the research and higher education community.
The process can be different depending on the location, scope, and pervasiveness of the vulnerability and the service. We are able to mediate with or without attribution, assist with a CVE ID request (if applicable), and suggest appropriate timelines and release channels.
For questions or to begin a disclosure, please reach out to soc@ren-isac.net.