Report a vulnerability (CVD)
In our increasingly digital world, we rely on a wide range of services and applications built on complex technical infrastructures. If vulnerabilities within companies or public authorities go undetected, the consequences can be severe. Potential attackers may gain access to important or sensitive data as a result.
To ensure that such vulnerabilities can be addressed as quickly as possible, the Coordinated Vulnerability Disclosure Policy (CVD) was established. Its objective is to report discovered security flaws confidentially to vendors and providers before they are made public. This helps minimize risks and provides valuable time to remediate a vulnerability securely.
The Federal Ministry of the Interior (BMI), together with other stakeholders, has published a national CVD policy.
If you would like to report a vulnerability to us or if you need assistance in reporting a vulnerability to a hardware- or softwaresupplier please contact us via email to team@cert.at or give us a call: +43 1 5056416 78.