- 3611 Valley Centre Drive, Ste. 150 San Diego, CA 92130 USA
- +1 760 579 0200
At Airgain, we welcome responsible disclosures that help us improve the safety and reliability of our products and services. If you’ve identified a potential security vulnerability, we want to hear from you.
To report a vulnerability, please email us at productsecurity@airgain.com
and include as much of the following information as possible:
Where is the vulnerability?
(e.g., device model, operating system, firmware version, IP address, URL, or radio frequency band)
Any additional context?
Any other relevant details, suggested mitigations, or observations.
What’s the issue?
Describe the vulnerability and its potential impact.
Attachments (optional):
You may attach relevant screenshots or documents (.jpg, .png, .pdf – max 10MB).
How can we reproduce it?
Step-by-step instructions, links, or files that help us validate the issue.
Contact email (optional but recommended):
So we can follow up and keep you informed throughout the process.
We’ll acknowledge receipt of your report within 3 business days.
Our team will evaluate and prioritize the issue based on severity and impact.
We’ll maintain an open line of communication and provide updates when possible.
For validated reports, we’ll be transparent about planned remediation steps and timelines.
We provide security patching support for a minimum of 12 months from the last-sale date of any supported product. This includes:
Fixes for vulnerabilities classified as Critical or Very High severity within 60 days of identification.
Fixes for High severity vulnerabilities within 90 days.
Any applicable licensing requirements for updates will be clearly communicated at the time of product purchase or support renewal.
Our firmware lifecycle and support commitments apply specifically to AC-Fleet products unless otherwise noted.
We collect only the information needed to communicate with you about your report. Please do not include personal data beyond what’s required. All submissions are handled in accordance with Airgain’s privacy and data handling policies.
By submitting a vulnerability report, you agree to act in good faith and avoid actions that could negatively impact Airgain systems, customers, or services. We appreciate researchers who follow coordinated disclosure practices and respect the shared goal of a safer ecosystem.
