The Product Cybersecurity Vulnerability & Incident Management Team is a global team, which manages security vulnerability information related to Vitesco Technologies. It is the central point of contact for all security researchers, customers, partners and suppliers, to report security information related to products of Vitesco Technologies.
If you believe you have identified a potential security vulnerability in a Vitesco Technologies Product, please contact us at: PCVIM@vitesco.com.
When reporting please provide the following information:
As soon as a vulnerability report is received, a tracking number is issued and is provided to the reporter. Then the relevant product responsible will be involved to validate and to understand the potential vulnerability and to assess the risk related to it. Once it is confirmed that one of our products has a vulnerability, we intend to notify our affected customers.
As next step, a detailed investigation is being made to understand the root cause, possible methods of exploitation and to assess the risk related to it.
A remediation plan will be prepared, and a mitigation strategy will be established.
We intend to disclose the vulnerability to the Automotive Community. However, this is only done in alignment with all our affected customers. It is important for us that our customers as well as our internal organization gets adequate time to deploy the required mitigation, before any damage could be caused by a disclosure of the vulnerability report.