Never say never when it comes to security. While implementing good security practices contributes significantly to the protection of information, credentials, intellectual property or assets, there is no perfect solution to make a system or product impossible to attack. Since the security of our products is of critical importance to us and our customers, we take any reports of potential security vulnerabilities seriously.
The Microchip Product Security Incident Response Team (PSIRT) is responsible for receiving and responding to reports of potential security vulnerabilities in our products, as well as in any related hardware, software, firmware, and tools. Once a report is received, the PSIRT will take the necessary steps to review the issue and determine what actions might be required to address any potential impacts to our products.
Microchip’s PSIRT will use the following steps to respond to report of a potential security vulnerability:
Microchip PSIRT follows a coordinated vulnerability responsible disclosure policy that you should review before you submit a report. It is based on the CERT® Guide to Coordinated Vulnerability Disclosure, and it describes the nature of the expectations and relationship between Microchip and you.
If you are a member of the media, please send any inquiries you may have regarding the security of Microchip products to PR@microchip.com.