Product Security Incident Response Team (PSIRT)
Vector’s Product Security Incident Response Team (PSIRT) is your first contact to report cybersecurity topics in connection with embedded products developed by Vector.
This team analyzes any incoming information, triggers appropriate reactions and coordinates the response.
If you identified a potential vulnerability or security breach, please contact us by using the following contact: psirt(at)vector.com.
In order to take into account the high protection requirements of such topics, usage of encryption for communication is preferred. You can find Vector’s PSIRT PGP public keys and fingerprints here:
4C3E A23D 3311 34D8 68D4 29C7 B70E DD48 C0ED 5B70
We kindly ask you not to publish or share with third parties any unresolved vulnerability in connection with Vector’s products.
Security Advisories
The Security Advisories from Vector are published to notify customers about security vulnerabilities and provide guidance on how to minimize and mitigate the risks associated with such vulnerabilities. We are aware of the following, please use the latest released advice (highest version):
| Vulnerability | Advisory ID | Advisory, released on | Version | Remarks |
| WIBU Systems CodeMeter Runtime Vulnerabilities | 2020-10-15 | 1.3 | no special remarks | |
| WIBU Systems CodeMeter Runtime Vulnerabilities | LM-4710 | 2021-06-17 | 1.0 | no special remarks |
| WIBU Systems CodeMeter Runtime Vulnerabilities | LM-5708 | 2021-11-10 | 1.0 | no special remarks |
| Apache Log4j2 (CVE-2021-44228) Security Vulnerabilities | 2021-12-14 | 1.0 | no special remarks | |
| Apache Log4j2 (CVE-2021-45046) Security Vulnerabilities | 2021-12-20 | 1.0 | no special remarks | |
| Apache Log4j2 (CVE-2021-45105) Security Vulnerabilities | 2021-12-20 | 1.0 | no special remarks |
Vector reserves the right to change or update this content without notice at any time to provide the latest available guidance.