Vulnerability Disclosure Program

Hand interacting with a digital security interface displaying a padlock icon above a tablet screen.

Vulnerability Disclosure Program

Help us keep UNLV websites, applications, and services secure. If you discover a suspected security issue, report it to the Information Security Office so we can investigate and address it.

Report Security Vulnerability

Reporting Guidelines

What You Can Do

  • Report suspected security issues discovered through normal use or inadvertent discovery.
  • Provide information that helps us understand and reproduce the issue.
  • Stop and report the issue if you unintentionally encounter sensitive information.

What To Avoid

  • Accessing, modifying, downloading, or deleting data that does not belong to you.
  • Attempting to bypass authentication, authorization, or other security controls.
  • Actions that could disrupt services or affect other users.
  • Vulnerability scanning, penetration testing, exploitation, or other active security testing activities.
  • Denial-of-service testing or attempts to impact system availability.