Hello Haiwang Wang
Thanks for your interest in TF-RMM. We do not expect TF-RMM to have been deployed in real products yet so we have not officially launched the vulnerability handling process for it. However, we do have a reporting alias you can use to report vulnerabilities privately: tf-rmm-security@lists.trustedfirmware.org
Regards
Dan.
-----Original Message----- From: 王海旺 via tf-rmm tf-rmm@lists.trustedfirmware.org Sent: Saturday, June 7, 2025 8:18 AM To: tf-rmm@lists.trustedfirmware.org Subject: [tf-rmm] How to report vulnerabilities
Hello tf-rmm group, I think i found several vulnerabilities in tf-rmm code, where should i report it. I don't see ways to report vulnerabilities in your github repositories security page or docs. After the vulnerability is confirmed, can you assign a CVE-ID for it?
-- Best Regards Haiwang Wang _______________________________________________ tf-rmm mailing list -- tf-rmm@lists.trustedfirmware.org To unsubscribe send an email to tf-rmm-leave@lists.trustedfirmware.org
IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.