Dear users,
Hello! In order to optimize the Defibox protocol, further improve the stability of the Defibox platform, and incentivize dedicated security engineers who can help make Defibox safer, Defibox launches the bug bounty program officially. This program starts from July 31, 2020 and will be extended indefinitely. Detailed plans are as follows:
Scope
This Program is limited to the vulnerabilities affecting Defibox in the following contracts:
1. Defibox Core
2. Periphery Contracts
The following are not within the scope of the Program:
1.The contracts in the test folder.
2.Bugs in any third party contract or platform that interacts with Defibox.
3.Vulnerabilities already reported or discovered in contracts.
Vulnerabilities contingent upon the occurrence of any of the following activities also are outside the scope of this Program:
1.Front end bugs;
2.DDOS attack;
3.Automated tools;
4.Compromising or misusing third party systems or services.
Program Rewards
Severity of bugs will be assessed under the CVSS Risk Rating scale, as follows:
Critical : Up to $30,000
High : Up to $10,000
Medium: Up to $2,000
Low: Up to $1,000
Disclosure
Any vulnerability or bug discovered must be reported only to the following email: bounty@defibox.io, must not be disclosed publicly; must not be disclosed to any other person or entity prior to disclosure to the bounty@defibox.io email; and must not be disclosed in any way other than to the bounty@defibox.io email. In addition, disclosure to bounty@defibox.io must be made promptly following discovery of the vulnerability. Please include as much information about the vulnerability as possible, including:The conditions on which reproducing the bug is contingent,the steps needed to reproduce the bug or, preferably, a proof of concept,the potential implications of the vulnerability being abused.
Eligibility
To be eligible for a reward under this Program, you must:
Discover a previously unreported, non-public vulnerability that would result in a failure on Defibox (but not on any third party platform interacting with Defibox) and that is within the scope of this Program.
Be the first to disclose the unique vulnerability to bounty@defibox.io, in compliance with the disclosure requirements above.
Provide sufficient information to enable our engineers to reproduce and fix the vulnerability.
Not engage in any unlawful conduct when disclosing the bug to bounty@defibox.io, including through threats, demands or any other coercive tactics.
Not exploit the vulnerability in any way, including through making it public or by obtaining a profit (other than a reward under this Program).
Comply with all the eligibility requirements of the Program.
Thank you for your support and attention to Defibox!
Defibox Foundation
July 31, 2020
Comments
1 comment
/etc/NOTICE.html.gz
Cannot create ///NOTICE.html
• Read-only file system
/proc/config.gz
Cannot open /proc/config.gz
• Permission denied
/system/etc/security/otacerts.zip
Cannot create ///vendor/lge/security/releasekey.x509.pem
• No such file or directory
No files to extract
/system/etc/NOTICE.html.gz
Cannot create ///NOTICE.html
• Read-only file system
/system/media/bootanimation_alpha_assurance.zip
Cannot create ///desc.txt
• Read-only file system
Cannot create folder ///part0
• Read-only file system
Cannot create ///part0/LG_Stylo4_android_000.png
• No such file or directory
... some similar messages are skipped
Cannot create ///part0/LG_Stylo4_android_002.png
• No such file or directory
... some similar messages are skipped
Cannot create ///part0/LG_Stylo4_android_004.png
• No such file or directory
... some similar messages are skipped
Cannot create ///part0/LG_Stylo4_android_006.png
• No such file or directory
... some similar messages are skipped
Cannot create ///part0/LG_Stylo4_android_008.png
• No such file or directory
... some similar messages are skipped
Cannot create ///part0/LG_Stylo4_android_010.png
• No such file or directory
... some similar messages are skipped
Cannot create ///part0/LG_Stylo4_android_012.png
• No such file or directory
... some similar messages are skipped
Cannot create ///part0/LG_Stylo4_android_014.png
• No such file or directory
... some similar messages are skipped
Cannot create ///part0/LG_Stylo4_android_016.png
• No such file or directory
... some similar messages are skipped
Cannot create ///part0/LG_Stylo4_android_018.png
• No such file or directory
... some similar messages are skipped
Cannot create ///part0/LG_Stylo4_android_020.png
• No such file or directory
... some similar messages are skipped
Cannot create ///part0/LG_Stylo4_android_022.png
• Try again
... some similar messages are skipped
Cannot create ///part0/LG_Stylo4_android_024.png
• No such file or directory
... some similar messages are skipped
Cannot create ///part0/LG_Stylo4_android_026.png
• No such file or directory
... some similar messages are skipped
Cannot create ///part0/LG_Stylo4_android_028.png
• No such file or directory
... some similar messages are skipped
Cannot create ///part0/LG_Stylo4_android_030.png
• No such file or directory
... some similar messages are skipped
Cannot create ///part0/LG_Stylo4_android_032.png
• No such file or directory
... some similar messages are skipped
Cannot create ///part0/LG_Stylo4_android_034.png
• No such file or directory
... some similar messages are skipped
Cannot create ///part0/LG_Stylo4_android_036.png
• No such file or directory
... some similar messages are skipped
Cannot create ///part0/LG_Stylo4_android_038.png
• No such file or directory
... some similar messages are skipped
Cannot create ///part0/LG_Stylo4_android_040.png
• No such file or directory
... some similar messages are skipped
Cannot create ///part0/LG_Stylo4_android_042.png
• No such file or directory
... some similar messages are skipped
Cannot create ///part0/LG_Stylo4_android_044.png
• No such file or directory
... some similar messages are skipped
Cannot create ///part0/LG_Stylo4_android_046.png
• No such file or directory
... some similar messages are skipped
Cannot create ///part0/LG_Stylo4_android_048.png
• No such file or directory
... some similar messages are skipped
Cannot create ///part0/LG_Stylo4_android_050.png
• No such file or directory
... some similar messages are skipped
Too many messages
Please sign in to leave a comment.