Hello, I've identified a remote code execution (RCE) vulnerability in Alfresco Content Services(latest). I've attempted to report this through the Hyland Community, but I'm unable to access it and consequently, can't get in touch with support. Is there an alternative way I can disclose this issue?
Thank you.
At this time, non-Hyland customers/partners can report through our Vulnerability Disclosure Program (VDP)
This is found on the Hyland Trust Center ( https://security.hyland.com/ ) labeled "Report a Vulnerability" within the Company Information card.
Customers and Partners should continue to use Hyland Community (work with your Hyland representative if you cannot access).
Ask for and offer help to other Alfresco Content Services Users and members of the Alfresco team.
Related links:
By using this site, you are agreeing to allow us to collect and use cookies as outlined in Alfresco’s Cookie Statement and Terms of Use (and you have a legitimate interest in Alfresco and our products, authorizing us to contact you in such methods). If you are not ok with these terms, please do not use this website.