Vulnerability Disclosure Program (VDP)
VDPs are meant for responsibly reporting vulnerabilities you encounter — not for actively hunting for fame or reputation. Even if you're just starting out, consider focusing on rewarded bug bounty programs instead.
sony
1
In Scope
1
Out of Scope
In-Scope Assets (1)
| Asset | Category | Bounty | Quick Links | |
|---|---|---|---|---|
| Security vulnerabilities that are identified in Sony products or in website domains owned, operated, or controlled by Sony are in scope. | OTHER | No | - |
Out-of-Scope Assets (1)
| Asset | Category | Bounty | |
|---|---|---|---|
| So-net (Sony Network Communications Inc.) | OTHER | No |
Scope Changes (6)
Feb 25, 2026
| Change | Asset | Category | Scope | Time |
|---|---|---|---|---|
| Added | security vulnerabilities that are identified in sony products or in website domains owned, operated, or controlled by sony are in scope | OTHER | In Scope | 19:09 |
| Added | so-net (sony network communications inc.) | OTHER | Out of Scope | 19:09 |
Feb 22, 2026
| Change | Asset | Category | Scope | Time |
|---|---|---|---|---|
| Added | security vulnerabilities that are identified in sony products or in website domains owned, operated, or controlled by sony are in scope | OTHER | In Scope | 00:41 |
| Added | so-net (sony network communications inc.) | OTHER | Out of Scope | 00:41 |
Feb 21, 2026
| Change | Asset | Category | Scope | Time |
|---|---|---|---|---|
| Added | security vulnerabilities that are identified in sony products or in website domains owned, operated, or controlled by sony are in scope | OTHER | In Scope | 19:11 |
| Added | so-net (sony network communications inc.) | OTHER | Out of Scope | 19:11 |