Information, data and its supporting processes, information systems and networks are vital to the business of Bühler and our customers and other business partners. The preservation of confidentiality, integrity and availability of valuable information is a major aspect to value the trust our customers and business partners place in us.
If you find security issues or vulnerabilities, we would appreciate it if you report them through our vulnerability disclosure program, which is operated by our partner Intigriti. To report, you need an account with Intigriti, which can be easily created here.
If you want to contact our information security team for any other purposes, please use the email address security[at]buhlergroup.com
The current leaderboard can be found here.
The following people have reported valid security issues until 2023 and helped us make Bühler more secure:
Créditos |
Fecha |
Descripción |
|---|---|---|
April 2023 |
Reported two issues in services of third party providers. |
|
Shlok K |
February 2023 |
Reported a security misconfiguration on a publicly exposed system. |
Himanshu Sondhi |
February 2023 |
Reported a vulnerability in a publicly exposed test system. |
Athbi |
January de 2023 |
Reported two authentication/authorization issues on API endpoints of a web application. |
January de 2023 |
Reported a vulnerable component in a service of a third party provider. |
|
November de 2022 |
Reported a valid vulnerability in a web application. |
|
October de 2022 |
Performed and reported subdomain takeover on two subdomains. |
|
Septiembre de 2022 |
Ha informado sobre diversas vulnerabilidades de interés en una aplicación web. |
|
Mayo de 2022 |
Ha informado sobre una vulnerabilidad de interés en una aplicación web. |
|
Enero de 2022 |
Ha informado sobre una vulnerabilidad de interés en una aplicación web. |
|
Enero de 2022 |
Ha informado sobre una vulnerabilidad de interés en una aplicación web. |
|
Octubre de 2021 |
Ha informado sobre un componente desactualizado y vulnerable en una aplicación web. |
|
Yunus Yildirim |
Octubre de 2021 |
Ha informado sobre una vulnerabilidad de interés en una aplicación web. |
Mohammed Eldawody |
Agosto de 2021 |
Ha informado sobre cuatro hallazgos de interés con explicaciones bien documentadas. |
