[DBBP25-01] January to March 2025 Bounties Announcement

2025-09-12 DJI

DJI’s bug bounty program, the “DJI Security Response Center”, was established in August 2017 to formalize our ongoing engagements with security researchers and experts, as part of the company’s continued efforts in strengthening its data security and customer privacy measures.

From January to March 2025, 8 researchers have reported 8 vulnerabilities which have been reviewed and resolved by our team. In accordance with the DSRC’s Program Policy, over US $1,300 in cash have been awarded.

We thank the researchers who have made significant contributions to our program, and whose names have now been inducted into DJI Security Contributors Page where they will be joined by future researchers who share our common goal of improving the security and stability of DJI products through responsible vulnerability discovery and disclosure.

We look forward to strengthened collaboration with the broader researcher community. If you have an idea or comments you would like to share with us, please send it to bugbounty@dji.com.