Coordinated Vulnerability Disclosure Process

X-Nav highly values and appreciates the efforts of the security research community in identifying potential vulnerabilities. If you discover a security issue in our products or services, please let us know so we can address it.

Contact Information

Please reach out to us via email at vigilance@x-navtech.com. We recommend using encryption for sensitive information.

Details to Include

Contact Information: Provide your name, organization, email address, and phone number for follow-up. We will never share your contact information.

Technical Description: Include details such as when, where, and how the vulnerability was discovered, the affected products or systems, and whether any sensitive information was accessed (e.g., protected health information). Do NOT include any personally-identifiably information in your submission.

Additional Information: Any other relevant details, such as the testing environment and tools used, and whether you have informed any other parties such as regulatory agencies or vendors.

X-Nav’s Response

Acknowledgment: We will confirm receipt of your submission within a few business days and provide a contact person. Our security team may reach out for further details or to confirm technical aspects.

Investigation: We will investigate the reported vulnerability and determine the appropriate action.

Summary: Once the investigation is complete, we will share a summary of our findings with you.

Knowledge Sharing: With your consent, we may publicly acknowledge your contribution.

Important Information

Compliance: Ensure your research complies with all applicable laws and regulations and avoid actions that could harm products or people.

Process Changes: We reserve the right to modify our disclosure process at any time without notice and to make exceptions on a case-by-case basis.

Questions or Concerns about X-Nav Security?

Contact us via email at vigilance@x-navtech.com.