Product Security
Product Security & Vulnerability Disclosure
At Cansonic, we take product cybersecurity seriously. We are committed to maintaining the security of our products, firmware, software, mobile applications, and related services throughout the applicable support period.
If you believe you have discovered a potential cybersecurity vulnerability affecting our products, please report it to us through the contact below.
Security Contact
Please report potential security vulnerabilities to:
Email: security@cansonic.com
When submitting a report, please include as much information as possible to help us understand and verify the issue.
Information to Include
To help us investigate the report efficiently, please provide the following information where available:
-
Product model name
-
Firmware version
-
Mobile App version or PC/Mac software version
-
Description of the potential vulnerability
-
Steps to reproduce the issue
-
Potential impact
-
Any relevant logs, screenshots, videos, or proof-of-concept details
-
Your contact information for follow-up communication
Please do not include unnecessary personal data or confidential third-party information in your report.
Scope
This vulnerability disclosure channel is intended for cybersecurity issues related to our products and software, including but not limited to:
-
Device firmware
-
Mobile applications
-
PC/Mac software
-
Product communication interfaces
-
Product update mechanisms
-
Product-related security functions
For general product support, warranty claims, repair requests, or sales inquiries, please contact our regular customer support channel.
Our Handling Process
After receiving a vulnerability report, we will review the submitted information and assess whether the issue affects our products.
Where applicable, we may contact the reporter for additional details. If the vulnerability is confirmed, we will evaluate the severity, affected products, possible mitigations, and the appropriate remediation plan.
Depending on the nature of the issue, remediation may include firmware updates, software updates, configuration changes, documentation updates, or other corrective actions.
Responsible Disclosure
We kindly ask security researchers and users to act responsibly when investigating and reporting potential vulnerabilities.
Please do not:
-
Access, modify, or delete data that does not belong to you
-
Disrupt product services or systems
-
Perform destructive testing
-
Attempt unauthorized access to third-party systems or accounts
-
Publicly disclose the vulnerability before we have had a reasonable opportunity to investigate and address the issue
We appreciate responsible reports that help improve the security and reliability of our products.
Security Updates
When necessary, security-related updates or advisories may be provided through our official website, product support pages, firmware update tools, mobile applications, or other appropriate communication channels.
Users are encouraged to keep their product firmware, mobile applications, and related software up to date.
No Bug Bounty Program
Unless otherwise stated, we do not currently operate a paid bug bounty program. Submission of a vulnerability report does not imply eligibility for compensation.
However, we sincerely appreciate responsible reports that help us improve product security.
Contact
For cybersecurity vulnerability reporting, please contact:
security@cansonic.com