- TIM's new image
  
  A new image with a dynamic style, modern colours and people occupying almost the entire scene. Read more
  
  back
  
  About us
  
  Activities
  
  Organization
  
  Governance
  
  Infrastructures
  
  Services
  
  Innovation
  
  Other activities
  
  Chairwoman
  
  Chief Executive Officer
  
  The organizational structure
  
  Governance tools
  
  Board of Directors
  
  Committees
  
  Board of Statutory Auditors
  
  Supervisory Body
  
  Remuneration
  
  TIM Wholesale
  
  Sparkle
  
  5G (in Italian)
  
  TIM for individuals and SMB
  
  TIM for companies and PA
  
  TIM Brasil
  
  Olivetti
  
  Noovle
  
  Telsy
  
  International Business Solutions
  
  TIM myBroker
  
  Code of Ethics
  
  Bylaws
  
  Regulations
  
  Corporate Governance Report
  
  Codes, policies and procedures
  
  231 Organizational Model
  
  Anti-corruption management system
  
  Risk management
  
  Whistleblowing
  
  Composition Board of Directors
  
  Responsibilities and Powers
  
  Appointment
  
  Activities, meeting and attendance
  
  Nomination and Remuneration Committee
  
  Control and Risk Committee
  
  Related Parties Committee
  
  Sustainability Committee
  
  Composition Board of Statutory Auditors
  
  Appointment, role and attendance
  
  Policy
  
  Report
- Preliminary FY 2025 results and 2026 update
  
  WATCH THE ON DEMAND
  
  back
  
  Reports and presentations
  
  Sustainable finance
  
  Shares
  
  Debt and rating
  
  Analyst Recommendations
  
  Regulated Information and Notices
  
  IR Contacts
  
  Presentations and webcasts
  
  Financial reports
  
  External auditors
  
  Financial Calendar
  
  Sustainability Financing Framework
  
  ESG indexes and ratings
  
  TIM Group share performance
  
  Shareholders
  
  Share Capital
  
  Significant Shareholdings
  
  Corporate operations
  
  Individual shareholders
  
  Transactions
  
  AGM and Meetings
  
  Dividends
  
  Debt structure
  
  Financial profile
  
  Rating
  
  Analyst coverage
  
  Consensus
  
  Financial events
  
  Silent Periods
  
  TI shares
  
  Telecom Italia S.p.A.
  
  TIM Participações
  
  Share Key Figures
  
  Share Capital
  
  Share Capital Evolution
  
  Details of the significant shareholdings
  
  Flaggings
  
  Useful information for individual shareholders
  
  Dividends
  
  Dividend history
  
  Debt detail
  
  Maturity profile and liquidity margin
  
  Bonds
  
  Debt documentation
  
  Exchange Offer
- Sustainability for TIM
  
  The Report 2024 incorporates the principles of the Corporate Sustainability Reporting Directive (CSRD) and is included in the Financial and Sustainability Report. Read more
  
  back
  
  Report 2024
  
  Report archive
  
  Insights ESG
- Latest press releases
  
  Read the latest press releases and search the archives of TIM Group's Press Office. Read more
  
  back
  
  Press Releases
  
  News
  
  Media tools
  
  Press contacts
  
  Management photos
  
  Group logos
- Join us
SEARCH

IT

featured tags Institutional communication Telecommunication cybersecurity Data driven innovation Sustainable development

Facebook Twitter Linkedin Copia Link

tag

Vulnerability Research & Advisor

The Coordinated Vulnerability Disclosure (CVD) process has been in place in the TIM Cyber Security department since 2019 and has been integrated into ethical hacking and bug hunting activities.
The Coordinated Vulnerability Disclosure represents an ethical approach to disclosing zero-day vulnerabilities, i.e., security bugs that are still unknown to developers and potentially exploitable before dedicated patches are released.
Through this process, the bug hunter discloses the identified vulnerabilities to vendors confidentially, granting them time to implement a security patch before the public disclosure.
This method strengthens the collective response to cyber threats, reducing the risk of malicious actors exploiting these critical vulnerabilities.
At TIM, we continuously work to promote the responsible disclosure of vulnerabilities, supporting vendors in identifying and resolving emerging threats and offering numerous benefits, such as:

System administrators are incentivized to promptly install security patches once bugs are made public;

Perimeter protection vendors can update their policies to intercept and block new malicious payloads;

Vulnerability Assessment tool vendors can update their products to detect new vulnerabilities;

Other vendors have the opportunity to verify whether the same criticality affects their own products, such as in open-source libraries.

This page compiles and updates the bug hunting work done by TIM: vulnerabilities are disclosed to public only after the vendor has released the security patch and agreed to share the details.

This approach helps build a more secure and collaborative ecosystem, both nationally and internationally, where responsible vulnerability sharing becomes a fundamental pillar in the fight against cyber threats.