{"id":3520,"date":"2026-06-04T16:00:51","date_gmt":"2026-06-04T13:00:51","guid":{"rendered":"https:\/\/ws-sup.fi-s.seravo.com\/?page_id=3520"},"modified":"2026-06-09T12:17:07","modified_gmt":"2026-06-09T09:17:07","slug":"vulnerability-reward-program","status":"publish","type":"page","link":"https:\/\/support.withsecure.com\/en\/vulnerability-reward-program\/","title":{"rendered":"Vulnerability Reward Program"},"content":{"rendered":"<section\n    class=\"wp-block-support-banner edwp-block wp-block-support-banner--bg-light-gray layout--spacing-xxxl-top layout--spacing-xxxl-bottom\"\n    >\n            <div class=\"wp-block-support-banner__container\">\n        <div class=\"wp-block-support-banner__content-wrapper\">\n                        <div class=\"wp-component-content wp-component-content--default wp-block-support-banner__content\">\n            <h2 class=\"wp-component-heading text--h2 wp-component-content__title\">\n    Vulnerability Reward Program<\/h2>                    <div class=\"wp-component-content__inner\">\n                                    <div class=\"wp-component-content__content wysiwyg\">\n                        <div class=\"wp-component-paragraph \">\n    <div class=\"hero\">\n<div class=\"page-desc\">We reward security researchers who responsibly disclose vulnerabilities in WithSecure products and services. Rewards range from EUR 500 to EUR 18,000.<\/div>\n<\/div>\n<\/div>\n                    <\/div>\n                                                            <\/div>\n                <\/div>                                <\/div>\n    <\/div>\n<\/section>\n\n\n<section\n    class=\"wp-block-accordion edwp-block layout--spacing-xxxl-top layout--spacing-xxxl-bottom\"\n    >\n    <div class=\"wp-block-accordion__container\">\n        <div class=\"wp-block-accordion__box\">\n            <div class=\"wp-component-content wp-component-content--default wp-component-content--centered wp-block-accordion__content fade-in\">\n            <h2 class=\"wp-component-heading text--h2 wp-component-content__title\">\n    What is this about?<\/h2>                    <div class=\"wp-component-content__inner\">\n                                    <div class=\"wp-component-content__content wysiwyg\">\n                        <div class=\"wp-component-paragraph \">\n    <p class=\"vrp-p\" style=\"text-align: left;\">We want to hear about any security vulnerabilities in our products and services. In order to reward security researchers, we offer monetary rewards for eligible security vulnerability reports that are disclosed to us in a coordinated way.<\/p>\n<p class=\"vrp-p\" style=\"text-align: left;\">However, there are certain rules that need to be followed to ensure that your security research does not cause security risk to other users or their data, and to decrease the likelihood that your research would be flagged as a malicious intrusion attempt by our monitoring.<\/p>\n<p class=\"vrp-p\" style=\"text-align: left;\">A &#8220;security vulnerability&#8221; is defined as an issue that causes a breach of confidentiality, integrity, or availability of the service or data, or applies to personal data being stored or processed in a way that is not compliant with the current Finnish data protection legislation.<\/p>\n<\/div>\n                    <\/div>\n                                                            <\/div>\n                <\/div>            <div class=\"wp-block-accordion__items\">\n                <div class=\"wp-component-accordion-item row-load wp-component-accordion-item--default wp-component-accordion-item--overlap js-wp-component-accordion-item-group\">\n            <div class=\"wp-component-accordion-item__item js-wp-component-accordion-item-item\">\n                        <button\n                id=\"block_263d17bcf8b8c7b765534456b2bfa0c2-accordion-summary-0\"\n                class=\"wp-component-accordion-item__title js-wp-component-accordion-item-title\"\n                type=\"button\"\n                aria-expanded=\"false\"\n                aria-controls=\"block_263d17bcf8b8c7b765534456b2bfa0c2-accordion-0\">\n                <span class=\"wp-component-accordion-item__inner-title\">\n                                                            <span>Scope<\/span>\n                <\/span>\n                <div class=\"wp-component-accordion-item__toggle\">\n                    <svg class='edwp-icon edwp-icon--lrg js-icon wp-component-accordion-item__toggle__icon' aria-hidden='true'>\n                <use xlink:href='#chevron'><\/use>\n            <\/svg>                <\/div>\n            <\/button>\n            <div\n                id=\"block_263d17bcf8b8c7b765534456b2bfa0c2-accordion-0\"\n                class=\"wp-component-accordion-item__content js-wp-component-accordion-item-content\"\n                aria-labelledby=\"block_263d17bcf8b8c7b765534456b2bfa0c2-accordion-summary-0\"\n                role=\"region\">\n                <div class=\"wp-component-accordion-item__content__inner\">\n                    <div class=\"wp-component-accordion-item__content__box\">\n                        <div class=\"wp-component-paragraph wp-component-accordion-item__content-text\">\n    <p class=\"vrp-p\">The vulnerability reward program covers the following WithSecure products and services. We welcome vulnerability reports about any other WithSecure products, services or public web pages \u2014 however, these are not at this time part of this reward program.<\/p>\n<div class=\"scope-list\">\n<div class=\"scope-item\">WithSecure Client Security<\/div>\n<div class=\"scope-item\">WithSecure Client Security Premium<\/div>\n<div class=\"scope-item\">WithSecure Server Security<\/div>\n<div class=\"scope-item\">WithSecure Server Security Premium<\/div>\n<div class=\"scope-item\">WithSecure E-mail and Server Security<\/div>\n<div class=\"scope-item\">WithSecure E-mail and Server Security Premium<\/div>\n<div class=\"scope-item\">WithSecure Linux Protection<\/div>\n<div class=\"scope-item\">WithSecure Atlant<\/div>\n<div class=\"scope-item\">WithSecure PSB Linux Security<\/div>\n<div class=\"scope-item\">WithSecure Cloud Protection for Salesforce<\/div>\n<div class=\"scope-item\">WithSecure Policy Manager<\/div>\n<div class=\"scope-item\">WithSecure Elements EPP for Computers<\/div>\n<div class=\"scope-item\">WithSecure Elements EPP for Computers Premium<\/div>\n<div class=\"scope-item\">WithSecure Elements EPP for Servers<\/div>\n<div class=\"scope-item\">WithSecure Elements EPP for Servers Premium<\/div>\n<div class=\"scope-item\">WithSecure Elements Collaboration Protection<\/div>\n<div class=\"scope-item\">WithSecure Elements Endpoint Detection and Response<\/div>\n<div class=\"scope-item\">WithSecure Countercept Managed Detection &amp; Response (MDR)<\/div>\n<div class=\"scope-item\">WithSecure Elements Mobile Protection<\/div>\n<\/div>\n<h6 class=\"vrp-h2\">Restrictions and supported versions<\/h6>\n<p class=\"vrp-p\">Current newest version with latest database update installed as released through WithSecure web pages, Google Play Store, Windows Phone Store or Apple App Store.<\/p>\n<h6 class=\"vrp-h2\">Permissible security research<\/h6>\n<p class=\"vrp-p\">We only allow security research that:<\/p>\n<ul class=\"vrp-ul\">\n<li>Makes a good faith effort to avoid affecting third party services or their availability<\/li>\n<li>Makes a good faith effort not to affect or disclose other users&#8217; accounts, personal data, or content<\/li>\n<li>Only uses user account(s) that belong to you personally<\/li>\n<li>Only targets user account(s), user data or personal data that belong to you personally, or are bogus test data<\/li>\n<li>Only uses or targets clients installed on hardware you yourself own and operate<\/li>\n<li>Only uses methods in compliance with your local and Finnish law<\/li>\n<li>Does not use malicious or destructive payloads beyond what is technically required for a benign proof-of-concept<\/li>\n<li>Only targets services or products listed above, with the appropriate exclusions<\/li>\n<\/ul>\n<\/div>\n                                                                                            <\/div>\n                <\/div>\n            <\/div>\n        <\/div>\n            <div class=\"wp-component-accordion-item__item js-wp-component-accordion-item-item\">\n                        <button\n                id=\"block_263d17bcf8b8c7b765534456b2bfa0c2-accordion-summary-1\"\n                class=\"wp-component-accordion-item__title js-wp-component-accordion-item-title\"\n                type=\"button\"\n                aria-expanded=\"false\"\n                aria-controls=\"block_263d17bcf8b8c7b765534456b2bfa0c2-accordion-1\">\n                <span class=\"wp-component-accordion-item__inner-title\">\n                                                            <span>How to report a vulnerability<\/span>\n                <\/span>\n                <div class=\"wp-component-accordion-item__toggle\">\n                    <svg class='edwp-icon edwp-icon--lrg js-icon wp-component-accordion-item__toggle__icon' aria-hidden='true'>\n                <use xlink:href='#chevron'><\/use>\n            <\/svg>                <\/div>\n            <\/button>\n            <div\n                id=\"block_263d17bcf8b8c7b765534456b2bfa0c2-accordion-1\"\n                class=\"wp-component-accordion-item__content js-wp-component-accordion-item-content\"\n                aria-labelledby=\"block_263d17bcf8b8c7b765534456b2bfa0c2-accordion-summary-1\"\n                role=\"region\">\n                <div class=\"wp-component-accordion-item__content__inner\">\n                    <div class=\"wp-component-accordion-item__content__box\">\n                        <div class=\"wp-component-paragraph wp-component-accordion-item__content-text\">\n    <p class=\"vrp-p\">Please submit your report by email to\u00a0<a href=\"mailto:security@withsecure.com\">security@withsecure.com<\/a>. We would very strongly recommend you encrypt the email using our PGP key, available on key servers (key fingerprint\u00a0<strong>2622 90BA C1DB AB46 2954 B150 1518 05EB 454B 15C4<\/strong>), and attach your own public key in the mail.<\/p>\n<h6 class=\"vrp-h2\">What to include in your report<\/h6>\n<ul class=\"vrp-ul\">\n<li>What you found<\/li>\n<li>Where exactly you found it and steps to reproduce\n<ul>\n<li><strong>Example:<\/strong>\u00a0If the attack relates to a specific URI and parameter, provide that information in detail<\/li>\n<li><strong>Example:<\/strong>\u00a0If you are performing fuzzing activities, provide additional information including the initial corpus you used<\/li>\n<\/ul>\n<\/li>\n<li>If the vulnerability applies to a service, the date and time (UTC) when you could reproduce it<\/li>\n<li>If the vulnerability applies to a client, provide the client version number, platform, and database version<\/li>\n<li>Possible impact or ways an attacker can leverage the vulnerability<\/li>\n<li>Proof-of-Concept or functional exploit if available<\/li>\n<li>Fix suggestion if available<\/li>\n<\/ul>\n<p class=\"vrp-p\">We aim to send a receipt within\u00a0<strong>five working days<\/strong>. If you do not hear back by then, please resend the report.<\/p>\n<\/div>\n                                                                                            <\/div>\n                <\/div>\n            <\/div>\n        <\/div>\n            <div class=\"wp-component-accordion-item__item js-wp-component-accordion-item-item\">\n                        <button\n                id=\"block_263d17bcf8b8c7b765534456b2bfa0c2-accordion-summary-2\"\n                class=\"wp-component-accordion-item__title js-wp-component-accordion-item-title\"\n                type=\"button\"\n                aria-expanded=\"false\"\n                aria-controls=\"block_263d17bcf8b8c7b765534456b2bfa0c2-accordion-2\">\n                <span class=\"wp-component-accordion-item__inner-title\">\n                                                            <span>What happens after your report<\/span>\n                <\/span>\n                <div class=\"wp-component-accordion-item__toggle\">\n                    <svg class='edwp-icon edwp-icon--lrg js-icon wp-component-accordion-item__toggle__icon' aria-hidden='true'>\n                <use xlink:href='#chevron'><\/use>\n            <\/svg>                <\/div>\n            <\/button>\n            <div\n                id=\"block_263d17bcf8b8c7b765534456b2bfa0c2-accordion-2\"\n                class=\"wp-component-accordion-item__content js-wp-component-accordion-item-content\"\n                aria-labelledby=\"block_263d17bcf8b8c7b765534456b2bfa0c2-accordion-summary-2\"\n                role=\"region\">\n                <div class=\"wp-component-accordion-item__content__inner\">\n                    <div class=\"wp-component-accordion-item__content__box\">\n                        <div class=\"wp-component-paragraph wp-component-accordion-item__content-text\">\n    <p class=\"vrp-p\">Our developers will look into the matter and determine whether your finding is a security vulnerability and if we can reproduce it with the information you supplied. If it qualifies, a reward will be paid after the issue has been fixed.<\/p>\n<p class=\"vrp-p\">We cannot commit to any specific fixing schedule as each case is different. However, we internally give high priority to externally reported security issues and will aim to keep you updated on the status.<\/p>\n<p class=\"vrp-p\">We may at times publish the names of people we have rewarded. If you would rather stay behind an alias or remain anonymous, we will of course respect that.<\/p>\n<p class=\"vrp-p\">A reward will not be paid if the finding becomes public in any way before it is fixed. If someone else has already reported the same finding, we will let you know after the issue has been fixed. If several researchers report the same issue, we only reward the sender of the first report that provides enough technical detail to reproduce the finding.<\/p>\n<\/div>\n                                                                                            <\/div>\n                <\/div>\n            <\/div>\n        <\/div>\n            <div class=\"wp-component-accordion-item__item js-wp-component-accordion-item-item\">\n                        <button\n                id=\"block_263d17bcf8b8c7b765534456b2bfa0c2-accordion-summary-3\"\n                class=\"wp-component-accordion-item__title js-wp-component-accordion-item-title\"\n                type=\"button\"\n                aria-expanded=\"false\"\n                aria-controls=\"block_263d17bcf8b8c7b765534456b2bfa0c2-accordion-3\">\n                <span class=\"wp-component-accordion-item__inner-title\">\n                                                            <span>Rewards<\/span>\n                <\/span>\n                <div class=\"wp-component-accordion-item__toggle\">\n                    <svg class='edwp-icon edwp-icon--lrg js-icon wp-component-accordion-item__toggle__icon' aria-hidden='true'>\n                <use xlink:href='#chevron'><\/use>\n            <\/svg>                <\/div>\n            <\/button>\n            <div\n                id=\"block_263d17bcf8b8c7b765534456b2bfa0c2-accordion-3\"\n                class=\"wp-component-accordion-item__content js-wp-component-accordion-item-content\"\n                aria-labelledby=\"block_263d17bcf8b8c7b765534456b2bfa0c2-accordion-summary-3\"\n                role=\"region\">\n                <div class=\"wp-component-accordion-item__content__inner\">\n                    <div class=\"wp-component-accordion-item__content__box\">\n                        <div class=\"wp-component-paragraph wp-component-accordion-item__content-text\">\n    <p class=\"vrp-p\">The size of the reward is solely determined by a WithSecure team of technical staff, based on the estimated risk posed by the vulnerability. The current reward range is from\u00a0<strong>EUR 500 to EUR 18,000<\/strong>.<\/p>\n<table class=\"reward-table\" style=\"height: 651px;\" width=\"1450\">\n<tbody>\n<tr>\n<td style=\"width: 336.135px;\">Up to \u20ac18,000<\/td>\n<td style=\"width: 1276.53px;\">\n<ul>\n<li>Remote code execution on production server (cloud backend)<\/li>\n<li>Remote file inclusion on production server<\/li>\n<li>Significant authentication bypass on production server containing critical information<\/li>\n<\/ul>\n<\/td>\n<\/tr>\n<tr>\n<td style=\"width: 336.135px;\">\u20ac12,000<\/td>\n<td style=\"width: 1276.53px;\">Privilege Escalation in EVM<\/td>\n<\/tr>\n<tr>\n<td style=\"width: 336.135px;\">\u20ac10,000<\/td>\n<td style=\"width: 1276.53px;\">Privilege Escalation in Cloud Service (granting admin rights to low-privilege users)<\/td>\n<\/tr>\n<tr>\n<td style=\"width: 336.135px;\">Up to \u20ac7,500<\/td>\n<td style=\"width: 1276.53px;\">\n<ul>\n<li>Remote code execution on client software<\/li>\n<li>Data extraction from a production server<\/li>\n<li>Access control issue exposing Personally Identifiable Information<\/li>\n<\/ul>\n<\/td>\n<\/tr>\n<tr>\n<td style=\"width: 336.135px;\">Up to \u20ac3,000<\/td>\n<td style=\"width: 1276.53px;\">\n<ul>\n<li>Remote code execution within a sandbox<\/li>\n<li>Local privilege escalation on customer machine<\/li>\n<li>Persistent denial of service on Anti-virus or privacy functionality<\/li>\n<\/ul>\n<\/td>\n<\/tr>\n<tr>\n<td style=\"width: 336.135px;\">Up to \u20ac1,000<\/td>\n<td style=\"width: 1276.53px;\">\n<ul>\n<li>Temporary denial of service of Anti-virus<\/li>\n<li>Temporary high impact DoS of local product functionality<\/li>\n<\/ul>\n<\/td>\n<\/tr>\n<tr>\n<td style=\"width: 336.135px;\">Up to \u20ac500<\/td>\n<td style=\"width: 1276.53px;\">Security related misconfiguration on production server or client software<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/div>\n                                                                                            <\/div>\n                <\/div>\n            <\/div>\n        <\/div>\n            <div class=\"wp-component-accordion-item__item js-wp-component-accordion-item-item\">\n                        <button\n                id=\"block_263d17bcf8b8c7b765534456b2bfa0c2-accordion-summary-4\"\n                class=\"wp-component-accordion-item__title js-wp-component-accordion-item-title\"\n                type=\"button\"\n                aria-expanded=\"false\"\n                aria-controls=\"block_263d17bcf8b8c7b765534456b2bfa0c2-accordion-4\">\n                <span class=\"wp-component-accordion-item__inner-title\">\n                                                            <span>Payments<\/span>\n                <\/span>\n                <div class=\"wp-component-accordion-item__toggle\">\n                    <svg class='edwp-icon edwp-icon--lrg js-icon wp-component-accordion-item__toggle__icon' aria-hidden='true'>\n                <use xlink:href='#chevron'><\/use>\n            <\/svg>                <\/div>\n            <\/button>\n            <div\n                id=\"block_263d17bcf8b8c7b765534456b2bfa0c2-accordion-4\"\n                class=\"wp-component-accordion-item__content js-wp-component-accordion-item-content\"\n                aria-labelledby=\"block_263d17bcf8b8c7b765534456b2bfa0c2-accordion-summary-4\"\n                role=\"region\">\n                <div class=\"wp-component-accordion-item__content__inner\">\n                    <div class=\"wp-component-accordion-item__content__box\">\n                        <div class=\"wp-component-paragraph wp-component-accordion-item__content-text\">\n    <div class=\"vrp-note\"><strong>IMPORTANT:<\/strong>\u00a0Please do not send your payment information to us up front. We will ask for the appropriate information if and when a payment is due.<\/div>\n<p class=\"vrp-p\">Payments are made as bank transfers within the Single Euro Payments Area (SEPA) or international bank wire transfers outside the SEPA. We cannot use checks, cryptocurrencies, or any other money transfer services. Payments are by default in Euros (EUR) and any currency conversions are done at the current bank rate.<\/p>\n<p class=\"vrp-p\">We are required to report all individual researchers&#8217; rewards to the Finnish Tax Administration irrespective of where you live. We would later request your full name, date of birth, a current physical mail address, and your bank transfer details.<\/p>\n<p class=\"vrp-p\">The recipient is responsible for any taxes. If you are taxed in Finland, we are required to collect the withholding tax and require your personal ID number and optionally your taxation certificate for the current year.<\/p>\n<p class=\"vrp-p\">Due to identification requirements, we will only deal with the original reporter directly using the email address from the initial report.<\/p>\n<\/div>\n                                                                                            <\/div>\n                <\/div>\n            <\/div>\n        <\/div>\n            <div class=\"wp-component-accordion-item__item js-wp-component-accordion-item-item\">\n                        <button\n                id=\"block_263d17bcf8b8c7b765534456b2bfa0c2-accordion-summary-5\"\n                class=\"wp-component-accordion-item__title js-wp-component-accordion-item-title\"\n                type=\"button\"\n                aria-expanded=\"false\"\n                aria-controls=\"block_263d17bcf8b8c7b765534456b2bfa0c2-accordion-5\">\n                <span class=\"wp-component-accordion-item__inner-title\">\n                                                            <span>Further legal statements<\/span>\n                <\/span>\n                <div class=\"wp-component-accordion-item__toggle\">\n                    <svg class='edwp-icon edwp-icon--lrg js-icon wp-component-accordion-item__toggle__icon' aria-hidden='true'>\n                <use xlink:href='#chevron'><\/use>\n            <\/svg>                <\/div>\n            <\/button>\n            <div\n                id=\"block_263d17bcf8b8c7b765534456b2bfa0c2-accordion-5\"\n                class=\"wp-component-accordion-item__content js-wp-component-accordion-item-content\"\n                aria-labelledby=\"block_263d17bcf8b8c7b765534456b2bfa0c2-accordion-summary-5\"\n                role=\"region\">\n                <div class=\"wp-component-accordion-item__content__inner\">\n                    <div class=\"wp-component-accordion-item__content__box\">\n                        <div class=\"wp-component-paragraph wp-component-accordion-item__content-text\">\n    <p class=\"vrp-p\">You may reverse-engineer and decompile WithSecure clients strictly and solely for the purpose of conducting security research for this vulnerability reward program. This permission applies only to WithSecure clients explicitly named and listed in this vulnerability reward program, excluding any licensed third party components therein. You may not disclose, show or publish to any third parties any code or parts thereof in any form you have derived resulting from this permission.<\/p>\n<p class=\"vrp-p\">WithSecure reserves the right to discontinue this reward program and change its terms at any time without prior notification. This text was last modified on\u00a0<strong>2022-12-22<\/strong>. Unless specifically extended, the current vulnerability reward program will end on\u00a0<strong>30th June 2026<\/strong>. All decisions regarding reward payments are final. The rules of this reward program or any communication related thereto do not provide or imply any obligations to WithSecure of any kind.<\/p>\n<\/div>\n                                                                                            <\/div>\n                <\/div>\n            <\/div>\n        <\/div>\n    <\/div>\n                            <\/div>\n                    <\/div>\n    <\/div>\n<\/section>\n","protected":false},"excerpt":{"rendered":"","protected":false},"author":11,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_acf_changed":false,"footnotes":""},"class_list":["post-3520","page","type-page","status-publish","hentry"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.6 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Vulnerability Reward Program - WithSecure\u2122<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/support.withsecure.com\/en\/vulnerability-reward-program\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Vulnerability Reward Program - WithSecure\u2122\" \/>\n<meta property=\"og:url\" content=\"https:\/\/support.withsecure.com\/en\/vulnerability-reward-program\/\" \/>\n<meta property=\"og:site_name\" content=\"WithSecure\u2122\" \/>\n<meta property=\"article:modified_time\" content=\"2026-06-09T09:17:07+00:00\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/support.withsecure.com\\\/en\\\/vulnerability-reward-program\\\/\",\"url\":\"https:\\\/\\\/support.withsecure.com\\\/en\\\/vulnerability-reward-program\\\/\",\"name\":\"Vulnerability Reward Program - WithSecure\u2122\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/support.withsecure.com\\\/en\\\/#website\"},\"datePublished\":\"2026-06-04T13:00:51+00:00\",\"dateModified\":\"2026-06-09T09:17:07+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/support.withsecure.com\\\/en\\\/vulnerability-reward-program\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/support.withsecure.com\\\/en\\\/vulnerability-reward-program\\\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/support.withsecure.com\\\/en\\\/vulnerability-reward-program\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/support.withsecure.com\\\/en\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Vulnerability Reward Program\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/support.withsecure.com\\\/en\\\/#website\",\"url\":\"https:\\\/\\\/support.withsecure.com\\\/en\\\/\",\"name\":\"WithSecure\u2122\",\"description\":\"\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/support.withsecure.com\\\/en\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Vulnerability Reward Program - WithSecure\u2122","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/support.withsecure.com\/en\/vulnerability-reward-program\/","og_locale":"en_US","og_type":"article","og_title":"Vulnerability Reward Program - WithSecure\u2122","og_url":"https:\/\/support.withsecure.com\/en\/vulnerability-reward-program\/","og_site_name":"WithSecure\u2122","article_modified_time":"2026-06-09T09:17:07+00:00","twitter_card":"summary_large_image","schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/support.withsecure.com\/en\/vulnerability-reward-program\/","url":"https:\/\/support.withsecure.com\/en\/vulnerability-reward-program\/","name":"Vulnerability Reward Program - WithSecure\u2122","isPartOf":{"@id":"https:\/\/support.withsecure.com\/en\/#website"},"datePublished":"2026-06-04T13:00:51+00:00","dateModified":"2026-06-09T09:17:07+00:00","breadcrumb":{"@id":"https:\/\/support.withsecure.com\/en\/vulnerability-reward-program\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/support.withsecure.com\/en\/vulnerability-reward-program\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/support.withsecure.com\/en\/vulnerability-reward-program\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/support.withsecure.com\/en\/"},{"@type":"ListItem","position":2,"name":"Vulnerability Reward Program"}]},{"@type":"WebSite","@id":"https:\/\/support.withsecure.com\/en\/#website","url":"https:\/\/support.withsecure.com\/en\/","name":"WithSecure\u2122","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/support.withsecure.com\/en\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"}]}},"_links":{"self":[{"href":"https:\/\/support.withsecure.com\/en\/wp-json\/wp\/v2\/pages\/3520","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/support.withsecure.com\/en\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/support.withsecure.com\/en\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/support.withsecure.com\/en\/wp-json\/wp\/v2\/users\/11"}],"replies":[{"embeddable":true,"href":"https:\/\/support.withsecure.com\/en\/wp-json\/wp\/v2\/comments?post=3520"}],"version-history":[{"count":5,"href":"https:\/\/support.withsecure.com\/en\/wp-json\/wp\/v2\/pages\/3520\/revisions"}],"predecessor-version":[{"id":3564,"href":"https:\/\/support.withsecure.com\/en\/wp-json\/wp\/v2\/pages\/3520\/revisions\/3564"}],"wp:attachment":[{"href":"https:\/\/support.withsecure.com\/en\/wp-json\/wp\/v2\/media?parent=3520"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}