Compare Products


Clear All


Home > Security Bulletins >Vulnerability Response Mechanism

Vulnerability Response Mechanism
Ruijie attaches great importance to the vulnerability management of products and services. Ruijie supports responsible vulnerability disclosure and handling process and respects the research results of each security researcher. To ensure timely responses to vulnerabilities, Ruijie has dedicated personnel to follow up, analyze, and address each reported security issue.
Vulnerability Response Process

Vulnerability Reception: Actively monitor and receive potential security vulnerabilities and issues from vulnerability reporters, and maintain contact with these reporters.Ruijie PSIRT will respond to vulnerability reports as soon as possible, usually within five business days.

Vulnerability Verification: Verify whether potential security vulnerabilities and issues affect the security of Ruijie's products, assess the risk, and determine the vulnerability leves. Ruijie PSIRT uses the Common Vulnerability Scoring System version 3.1 (CVSS3.1) to score vulnerabilities. For the specific scoring criteria, log in to the webpage:

Vulnerability Remediation: Develop a vulnerability risk mitigation and remediation plan, verify the effect of the vulnerability remediation, and provide a product upgrade package or patch.Ruijie PSIRT will work with the product team to perform a preliminary analysis and validation of the report to determine the validity, severity and impact of the vulnerability. We may contact you if we need more information about the reported vulnerability.Remediation typically takes up to 90 days and in some cases may take longer.

CVSS 3.1 Base Score
Temporary plan
≤7 business days
≤30 business days
≤14 business days
≤60 business days
≤30 business days
≤180 business days

Vulnerability Disclosure: Disclose vulnerability information if a workaround plan or patch is available (or a new version is released).

Solution: After disclosure of the vulnerability, Ruijie will monitor the effectiveness of the remediation measures, collect customer feedback and suggestions, and update the patch/upgrade package if necessary. At the same time, Ruijie will continue to improve the product development and vulnerability handling process.

Throughout the vulnerability handling process, Ruijie PSIRT shall strictly control the scope of vulnerability information and shares the information with relevant personnel only. Ruijie sincerely requests you to keep the information confidential until a complete solution is available to the customers.

Ruijie will take necessary and reasonable measures to protect the obtained vulnerability data in compliance with legal regulations.. Ruijie will not voluntarily share or disclose the aforementioned data to third parties unless expressly requested by the affected customer or required by law.

Ruijie Networks websites use cookies to deliver and improve the website experience.

See our cookie policy for further details on how we use cookies and how to change your cookie settings.

Cookie Manager

When you visit any website, the website will store or retrieve the information on your browser. This process is mostly in the form of cookies. Such information may involve your personal information, preferences or equipment, and is mainly used to enable the website to provide services in accordance with your expectations. Such information usually does not directly identify your personal information, but it can provide you with a more personalized network experience. We fully respect your privacy, so you can choose not to allow certain types of cookies. You only need to click on the names of different cookie categories to learn more and change the default settings. However, blocking certain types of cookies may affect your website experience and the services we can provide you.

  • Performance cookies

    Through this type of cookie, we can count website visits and traffic sources in order to evaluate and improve the performance of our website. This type of cookie can also help us understand the popularity of the page and the activity of visitors on the site. All information collected by such cookies will be aggregated to ensure the anonymity of the information. If you do not allow such cookies, we will have no way of knowing when you visited our website, and we will not be able to monitor website performance.

  • Essential cookies

    This type of cookie is necessary for the normal operation of the website and cannot be turned off in our system. Usually, they are only set for the actions you do, which are equivalent to service requests, such as setting your privacy preferences, logging in, or filling out forms. You can set your browser to block or remind you of such cookies, but certain functions of the website will not be available. Such cookies do not store any personally identifiable information.

Accept All

View Cookie Policy Details

Fale conosco

Fale conosco

How can we help you?

Fale conosco

Get an Order help

Fale conosco

Get a tech support