Bounties currently on hold as the program is undergoing reassessment.
We thank everyone who participated to make our products and services safer!
If you have any questions or concerns, feel free to contact us at
bounty@bistudio.com
Scope
Games
Domains(including their subdomains) within scope
- bistudio.com
- bohemia.net
- ylands.com
- ylands.net
- arma2.com
- arma3.com
- dayz.com
- armamobileops.com
- minidayz.com
- vigorgame.com
Scope exclusions
- vpn.bistudio.com
- jury.bistudio.com
- master.bistudio.com
Non-qualifying vulnerabilities
- Issues in 3rd party software (Steam, BattlEye, Invision forums ...)
- (Games) Single player/editor issues which do not affect multiplayer environment
- (Games) Vulnerabilities working only on modded or otherwise manipulated servers
- SSL certificate issues
- Outdated JavaScript libraries
- Host header injection (without a security risk proof of concept)
- Denial of Service attacks
- Physical attacks against offices and data centers
- Social engineering of our service desk, employees or contractors
- Bruteforce password cracking of accounts or services
Please report any gameplay bugs, exploits or crashes on our official feedback
tracker https://feedback.bistudio.com/ __
This program have been found on Hackerone on 2018-09-04.