Skip to content

Introduction

report.jpg

This service is an offering to our partners and customers to stay up to date with our products. We will provide you the information to identify upgrade requirements and analyze the risks you may have when operating older versions of our products, solutions and services.
To support SOCs (Security Operation Centers) and security teams all over the world we have standardized our vulnerability reporting and so we provide machine readable CSAF Advisories as well as human readable HTML-Files according to CSAF-Guidelines.

For more information about CSAF please read this introduction carefully.

Warning

According to the TLP 2.0 all our security advisories are at least TLP:AMBER, TLP:GREEN and TLP:RED requiring and active maintenance contact and an effective NDA. Please contact our Sales-Team for further information. No information provided here is public!

sematicon AG is following Version 2.0 of the OASIS-CSAF-Standard as described here:

https://docs.oasis-open.org/csaf/csaf/v2.0/csaf-v2.0.md (Authoritative)
https://docs.oasis-open.org/csaf/csaf/v2.0/csaf-v2.0.html
https://docs.oasis-open.org/csaf/csaf/v2.0/csaf-v2.0.pdf

Info

The Report in TLP:WHITE from 2023 is for demonstration and test only and does not require any authentication.

Machine Readable Reports (CSAF)

Since 2024 we provide security advisories in CSAF-Format. The Common Security Advisory Framework (CSAF) is a language to exchange Security Advisories. It plays a crucial role in the cyber security arena since it allows stakeholders to automate the creation and consumption of security vulnerability information and remediation.

To use our CSAF-Reports you can use the CSAF-Downloader which can be used here:

CSAF-Endpoint: https://security.sematicon.com/.well-known/csaf/provider-metadata.json

Example how to use the CSAF Downloader:

To download security advisories classified other than TLP:WHITE you need an access certificate. Please contact sematicon Sales for further details.

Without any certificate (TLP:WHITE only):

csaf_downloader security.sematicon.com

With an certificate file:

csaf_downloader security.sematicon.com --client_cert=../mw_cert.pem --client_key=../mw_key.pem

Human Readable Reports (HTML)

We also provide all security advisories in old plain HTML-Format as a human readable version. Please use the button below to access these reports sorted by year and version.

HTML Security Advisories (TLP:WHITE) (Unrestricted)

HTML Security Advisories (TLP:GREEN)

HTML Security Advisories (TLP:AMBER)

HTML Security Advisories(TLP:RED)