Scope
This page describes when and how we release security bug fixes for our products.
Security Bugfix Service Level Agreement (SLA)
We attempt to meet the following timeframes for fixing security issues.
- Critical severity bugs should be fixed in product within 4 weeks of being reported.
- High severity bugs should be fixed in product within 6 weeks of being reported.
- Medium severity bugs should be fixed in product within 8 weeks of being reported.
Critical vulnerabilities
When a Critical security vulnerability is discovered Infosysta will do all of the following:
- Issue a new, fixed release for the current version of the affected product as soon as possible.