A vulnerability is a technical issue with the www.baesystems.com website which attackers or hackers could use to exploit the website and its users. Whilst we appreciate your co-operation you will not be paid a reward for reporting a vulnerability.
Scope
What to report
- The IP address and/or URL of the page where you found the vulnerability
- A description of the type of vulnerability - for example, Cross Site Scripting (XSS)
- Details of the steps we need to take to reproduce the vulnerability
- Screenshots or logs if you have them
- Give us as much detail as possible and cite any sources or references
Where to report
Submit a vulnerability disclosure to us at vulnerability@baesystems.com.
Guidance
- Once we receive your report, we will contact you if any further actions are required
- When you make a submission, we will process your personal data in line with the company’s privacy notice.
- Do not break any laws or regulations
- Do not disrupt or deny the network/system/service
- Please don't use this reporting system for any other purpose
09 February 2024