What is a Vulnerability Disclosure Program?

Question

G2

Verified User

What is a Vulnerability Disclosure Program?

Asked about 6 years ago

Vulnerability disclosure programs give security researchers a way to report bugs and provide organizations a way to find and reward these submissions. There are no monetary rewards associated with vulnerability disclosure programs.

Bug Tracking Software

Penetration Testing Software

Crowdsourced Testing Software

Comment

1 comment

1

Looks like you’re not logged in.

Users need to be logged in to answer questions

Log In

Olivia B. · Answer 1 · 2019-05-30T16:04:24-05:00

Official Response

Bugcrowd

Read reviews

OB

Olivia B.

0

Answered about 6 years ago

Provide a coordinated channel and framework for responsible disclosure and security feedback from the global community. Think of it as a “neighborhood watch” for your organization’s internet assets – encourage people to report something if they see something. VDPs are ideal for continuous testing of internet web properties, self-sign up apps, or anything publicly accessible. Bugcrowd’s managed approach offloads the operational overhead of implementing a VDP, helping accelerate the discovery and remediation of vulnerabilities.

What is a Vulnerability Disclosure Program?

About Bugcrowd