Security and Privacy Vulnerability management

What is vulnerability management?

Vulnerability management is an ongoing process of identifying, evaluating, remediating, verifying and reporting vulnerabilities in systems and software. Vulnerability management can include issues with the underlying code as well as configurations pertaining to permissions and network capabilities. The aim of vulnerability management is to identify and remediate known vulnerabilities and apply security actions within a defined time objective.

Why is vulnerability management important?

Utilising vulnerability management helps meet laws, regulations, and compliance standards. These may include such regulations as the General Data Protection Regulation (GDPR) for personal information collected during customer interactions, and similar regulations. It helps avoiding exposure to leaks and breaches.

How do I report a vulnerability to Webfleet?

If you believe you have discovered a security or privacy vulnerability that affects Webfleet systems or services, please report it to us. We welcome reports from everyone, including security researchers, developers, and customers.

To report a security or privacy vulnerability, please send an email to DigitalTrust@webfleet.com that includes:

The specific product and software version(s) which you believe are affected.
Description of the behaviour observed as well as the behaviour that you expected.
A list of steps required to reproduce the issue and a video, if the steps may be hard to follow.

For the protection of our customers, Webfleet doesn't disclose, discuss, or confirm security issues until our investigation is complete and any necessary updates are generally available.

Webfleet commitment to vulnerability management?

Webfleet commits to resolve security vulnerabilities and release patches typically within 90 days to support systems or services, for a period of one calendar year from the end-of-sales date (Note: The end-of-sales date is when Webfleet announces to stop selling the product).