[DBBP22-02] April to June 2022 Bounties Announcement

2022-07-08 DJI

DJI’s bug bounty program, the “DJI Security Response Center”, was established in August 2017 to formalize our ongoing engagements with security researchers and experts, as part of the company’s continued efforts in strengthening its data security and customer privacy measures.

From April to June 2022, 13 researchers have reported 15 vulnerabilities which have been reviewed and resolved by our team. In accordance with the DSRC’s Program Policy, over US$2600 in cash have been awarded.

We thank the researchers who have made significant contributions to our program, and whose names have now been inducted into April to June 2022 DJI Security Contributors Page where they will be joined by future researchers who share our common goal of improving the security and stability of DJI products through responsible vulnerability discovery and disclosure.

We look forward to strengthened collaboration with the broader researcher community. If you have an idea or comments you would like to share with us, please send it to bugbounty@dji.com.