Contact us
Call us Email us Contact form

Vulnerability Reporting Template

Please use this template to report a potential vulnerability in the zenon Software Platform.

Home Vulnerability Reporting Template | COPA-DATA

Note: Use this form to report potential security vulnerabilities in the zenon Software Platform of Ing. Punzenberger COPA-DATA GmbH. Your submission will be reviewed and analyzed by the COPA-DATA Product Security Incident Response Team (PSIRT).

Providing your contact information is optional, therefore the contact information fields are not mandatory to submit the report. If you choose not to include your contact information, your report will remain anonymous, and the Ing. Punzenberger COPA-DATA GmbH will be unable to follow up with you regarding the status or outcome of your submission.

The following rules apply to the work with vulnerability reports:

  • COPA-DATA is committed to a relationship of trust with customers and partners. For this reason, vulnerability reports are only made available to the responsible group of people during processing and are securely stored.
  • COPA-DATA publishes advisories of known vulnerabilities and the associated fixes or mitigations in the form of a Security Newsletter to registered recipients and on the COPA-DATA Self Service Portal after a reasonable period of time.
  • COPA-DATA processes vulnerability reports internally together with the personal data provided by the reporting person. The Processing of such personal data is intended for direct communication which can speed up problem resolution. If anonymous reporting is desired, this can be specified in the reporting form.
  • The detection or reporting of a vulnerability may violate laws or other regulations. COPA-DATA will not take legal action against any person who discovered a vulnerability in good faith and reports it voluntarily to COPA-DATA.
  • The reporting person waives all rights in connection with the discovery of the vulnerability and in particular the right to a copyright in the event that a solution for the elimination of the vulnerability has been proposed. Upon request, the reporting person can be named when the vulnerability is published.

COPA-DATA will handle submitted vulnerability reports with the expected care. No right to rectification of the potential vulnerability can be derived from the reporting. The evaluation and assessment of the reported vulnerability, its prioritization and elimination is at the sole discretion of COPA-DATA

Please note that when reporting vulnerabilities, you must observe legal provisions or other obligations, especially confidentiality obligations.