How can I access Qovex's bug bounty program?

Qovex's bug bounty program is managed by Bugcrowd. You can access it here.

Who can participate in the program?

Anyone can participate in the bug bounty program. Note that you will require a Bugcrowd account in order to submit findings. A Qovex account is not required, but is encouraged in order to be able to interact with all the functionalities that our products offer.

What is the scope of the program?

The bug bounty program includes Qovex web applications, mobile applications and externally visible infrastructure. However it does not include third party products or services used by Qovex. Exact and up to date scope information is available in the program details.

Will my submission be rewarded?

We pay monetary rewards for valid, unique submissions of sufficient severity. The exact reward ranges for individual severities and target groups are listed in the program details.

Are there alternative ways to submit vulnerabilities to Qovex?

All bug bounty submissions should be submitted via the official program at Bugcrowd. Qovex does not have a program on any other bug bounty platforms.

If you would like to report a vulnerability, but do now wish to participate in the bug bounty program, please send your report to [email protected]. Note however that such submissions are not eligible for a reward.