Report a Product Security Vulnerability

Basic Information

Fields marked with an asterisk (*) are required

First Name*

Last Name

Company (if applicable)

Email *

Please provide a high-level description of the problem *

Product Details

Please enter as many of the following details about the Nuvoton product as you can

Part Number

Product Category (e.g. TPM, MCU, EC, BMC)

Chip Revision

Firmware/Software Version

Please provide us with a detailed description of the issue, and if possible with detailed steps or information on how to reproduce the problem

Upload File

For any supporting information such as logs, crash dumps, packet captures and screenshots. Note: the uploader is limited to a single file. If you have multiple files to send, please compress them to a single ZIP or RAR file before sending.

Click here or drop file to upload


Validate Code *

Please allow seven business days for an initial response

Nuvoton endeavors to work with industry, government organizations, and the security community when reporting vulnerabilities. Public disclosure of vulnerabilities will generally take place only after permanent fixes are available. Security researchers who wish to publicize Nuvoton vulnerability details are asked to wait 90 days until after public disclosure of the vulnerability has taken place and to coordinate whenever possible with Nuvoton.