Customer Product Vulnerability Inquiry

If a customer with a support contract suspects a vulnerability with any Extreme product, service or solution, they should create a case with Global Technical Assistance Portal (GTAC) through the Extreme Support Portal.

Process:

GTAC support will obtain all pertinent information from the customer regarding a suspected vulnerability and forward to the Product Security and Incident Response Team (PSIRT).

Please note: GTAC may request vulnerability scans and current product versions from the customer to properly triage the issue or vulnerability.

PSIRT will conduct an initial triage based on the industry standards, e.g.: CVE, CVSS, exposure, and risk.

PSIRT will communicate the state of the investigation to the customer and remediations of vulnerability.

Communication:

Communicating during the PSIRT process will occur internally by GTAC.

External Publications are communicated via Security Advisories or Knowledge Base Articles. Customers are able to subscribe to RSS feeds and/or email notifications of publications through the community site.

• How To Create a Case Through Extreme Support Portal
• Where Can I Find or How Can I Request Information About Extreme Networks Product Security Advisories?
• How to subscribe to Security Advisory RSS feed
• Extreme Networks PSIRT Web Page
• Security Advisories Page