Report a security or privacy vulnerability
Report a security or privacy vulnerability
If you believe you have discovered a security or privacy vulnerability in Shenzhen Runbu Technology Co., Ltd's products, please submit your report to us using the following email:506465421@qq.com
In your report please include vulnerability Details:
Specific product and software version(s) that you believe are affected(mandatory)
A technical description of the behavior that you observed and the behavior that you expected (mandatory)
Severity (optional)
Title of vulnerability (mandatory)
Description of vulnerability (this should include a summary, supporting files and possible mitigations or recommendations) (mandatory)
Impact (what could an attacker do?) (mandatory)
Steps to reproduce. These should be a benign, non-destructive, proof of concept. This helps to ensure that the report can be triaged quickly and accurately. It also reduces the likelihood of duplicate reports, or malicious exploitation of some vulnerabilities, such as sub-domain takeovers.
Vulnerability review phase
After you have submitted your report, we will respond to your report within 7 working days and aim to triage your report within 14 working days. We will also aim to keep you informed of our progress.Priority for remediation is assessed by looking at the impact, severity and exploit complexity.Vulnerability reports might take some time to triage or address. You are welcome to enquire on the status but should avoid doing so more than once every 14 days. This allows our teams to focus on the remediation.
Vulnerability remediation completion phase
The R&D department fixes the vulnerabilities, and the fixing time depends on the severity of the problem and the difficulty of fixing it, some of the vulnerabilities are restricted by version releases, and the repair time is determined according to the actual situation.
Serious or major impact vulnerabilities will be issued separately emergency security bulletin.
Ongoing security updates
We will provide security updates for all series as they are released. This ensures that your products are protected from emerging threats.
Scope of support: 9071-J,9070-J,S-OB7A,B5300,M-11,9601,9601C,9093,M4,B5314,B5303,S-9071,5017,9790-J,9210-S,7023B,160C,151C,9090-J,9608-W,4022D,1798,B5305,9706-J,9101,F9093C,B5570R,FS02C,8807,4022B,K-7001D,JSD-520,SX-5513,SWM 686,B5303R,FX12,9710S,SWM 505,M12,SWM D110.
Duration of support: Users can retrieve the security updato supportperiod from the website www.elenxs.com.com and access it through the website www.elenxs.com.The product provides security update support till 2ed,September 2026 after shipment.
Do NOT:
Break any applicable law or regulations
Access unnecessary, excessive or significant amounts of data
Modify data in the Organization's systems or services
Use high-intensity invasive or destructive scanning tools to find vulnerabilities
Attempt or report any form of denial of service, e.g. overwhelming a service with a high volume of requests
Disrupt the Organization's services or systems
Information about products not manufactured by our company, or independent websites not controlled or tested by our company, is provided without recommendation or endorsement. Our company assumes no responsibility with regard to the selection, performance, or use of third-party websites or products. Our company makes no representations regarding third-party website accuracy or reliability.
If you believe you have discovered a security or privacy vulnerability in Shenzhen Runbu Technology Co., Ltd's products, please submit your report to us using the following email:506465421@qq.com
In your report please include vulnerability Details:
Specific product and software version(s) that you believe are affected(mandatory)
A technical description of the behavior that you observed and the behavior that you expected (mandatory)
Severity (optional)
Title of vulnerability (mandatory)
Description of vulnerability (this should include a summary, supporting files and possible mitigations or recommendations) (mandatory)
Impact (what could an attacker do?) (mandatory)
Steps to reproduce. These should be a benign, non-destructive, proof of concept. This helps to ensure that the report can be triaged quickly and accurately. It also reduces the likelihood of duplicate reports, or malicious exploitation of some vulnerabilities, such as sub-domain takeovers.
Vulnerability review phase
After you have submitted your report, we will respond to your report within 7 working days and aim to triage your report within 14 working days. We will also aim to keep you informed of our progress.Priority for remediation is assessed by looking at the impact, severity and exploit complexity.Vulnerability reports might take some time to triage or address. You are welcome to enquire on the status but should avoid doing so more than once every 14 days. This allows our teams to focus on the remediation.
Vulnerability remediation completion phase
The R&D department fixes the vulnerabilities, and the fixing time depends on the severity of the problem and the difficulty of fixing it, some of the vulnerabilities are restricted by version releases, and the repair time is determined according to the actual situation.
Serious or major impact vulnerabilities will be issued separately emergency security bulletin.
Ongoing security updates
We will provide security updates for all series as they are released. This ensures that your products are protected from emerging threats.
Scope of support: 9071-J,9070-J,S-OB7A,B5300,M-11,9601,9601C,9093,M4,B5314,B5303,S-9071,5017,9790-J,9210-S,7023B,160C,151C,9090-J,9608-W,4022D,1798,B5305,9706-J,9101,F9093C,B5570R,FS02C,8807,4022B,K-7001D,JSD-520,SX-5513,SWM 686,B5303R,FX12,9710S,SWM 505,M12,SWM D110.
Duration of support: Users can retrieve the security updato supportperiod from the website www.elenxs.com.com and access it through the website www.elenxs.com.The product provides security update support till 2ed,September 2026 after shipment.
Do NOT:
Break any applicable law or regulations
Access unnecessary, excessive or significant amounts of data
Modify data in the Organization's systems or services
Use high-intensity invasive or destructive scanning tools to find vulnerabilities
Attempt or report any form of denial of service, e.g. overwhelming a service with a high volume of requests
Disrupt the Organization's services or systems
Information about products not manufactured by our company, or independent websites not controlled or tested by our company, is provided without recommendation or endorsement. Our company assumes no responsibility with regard to the selection, performance, or use of third-party websites or products. Our company makes no representations regarding third-party website accuracy or reliability.