Login using the same account registered via the mobile application. The BOX is managed via the Bitdefender Central App. However, if you believe you've found a way to be able to control someone else's device via the mobile app, you're encouraged to submit it - and we'll review whether it's in scope or rewardable. Please note that the mobile app is not in scope for this program. User accounts are shared by the mobile & web apps. Create an account or log in using an existing account.
#Central bitdefender com install#
To configure/setup BOX v2, install the "Bitdefender Central" mobile application.
#Central bitdefender com how to#
Vulnerabilities found on Bitdefender mobile apps & are out-of-scope.Īll instructions for the product are in the BOX package (default passwords, how to configure, etc). Furthermore, ONLY vulnerabilities on BOX products are out-of-scope. See Scope - Additional Details for more information on scoping. This is decided at the sole discretion of the Bitdefender team. Vulnerabilities submitted which are not included in the above list may not be rewarded.
#Central bitdefender com code#
1.a) Remote Code Execution - Ability to get remote code execution against the BOX without proper authorization (not on the same LAN) - achieving this objective will be rewarded in the range of 5000$ġ.b) Ability to access/control the BOX remotely without proper authorization (not on the same LAN) - reward varies depending on impactĢ.a) Remote Code Execution - Ability to get remote code execution against the BOX without proper authorization (ON the same LAN) - achieving this objective will be rewarded in the range of 2500$Ģ.b) Ability to access/control the BOX without proper authorization (ON the same LAN) - reward varies depending on impactģ.a) DOS - crash our product remotely (not on the same LAN) - 2500$ģ.b) DOS - crash our product (ON the same LAN) - 1000$Īttacking your own device from a BOX Administrator standpoint is not eligible for reward.
The following vulnerabilities are in-scope for the program: The Bitdefender Security team will determine the nature and impact of the vulnerabilities at their sole discretion. If you're able to identify any vulnerabilities in the cloud app, they should be reported here. It's important to note that the Bitdefender Box communicates through a cloud app - however, this program is provided exclusively for the reporting of security issues pertaining to any communication directly to/from the Box itself. a friend coming at your place, connecting to your WIFI network and hack your box device OR exploiting other customer devices remotely). The scope of this bounty program is to find vulnerabilities that can be exploited as a guest, or remotely. If you don't already own a Box2, you can acquire a device in 2 ways:ġ) Purchase a device through the Bitdefender website.Ģ) Qualify as an "Expert Researcher" (survey link below). Researchers must supply their own device for testing. BOX can be controlled from the central website or the easy-to-use mobile app. BOX secures smartphones, smart TVs, and all your other home appliances, like Wi-Fi thermostats, gaming consoles, and even your baby monitor). Bitdefender BOX protects all devices connected to the Internet, not just a laptop or desktop computer.
0 kommentar(er)
