CINXE.COM

<!DOCTYPE html> <html lang="it" dir="ltr" prefix="og: https://ogp.me/ns#"> <head> <meta charset="utf-8" /> <meta name="description" content="Scopri come testare e segnalare eventuali vulnerabilit脿 individuate nei sistemi di comunicazione e informazione della Commissione, secondo quanto descritto nella politica di divulgazione" /> <meta name="keywords" content="cybersicurezza, protezione dei dati" /> <meta http-equiv="content-language" content="it" /> <link rel="canonical" href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_it" /> <meta property="og:determiner" content="auto" /> <meta property="og:site_name" content="Commissione europea" /> <meta property="og:type" content="website" /> <meta property="og:url" content="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_it" /> <meta property="og:title" content="Politica di divulgazione delle vulnerabilit脿" /> <meta property="og:description" content="Scopri come testare e segnalare eventuali vulnerabilit脿 individuate nei sistemi di comunicazione e informazione della Commissione, secondo quanto descritto nella politica di divulgazione" /> <meta name="twitter:card" content="summary_large_image" /> <meta name="twitter:title" content="Politica di divulgazione delle vulnerabilit脿" /> <meta name="twitter:description" content="Scopri come testare e segnalare eventuali vulnerabilit脿 individuate nei sistemi di comunicazione e informazione della Commissione, secondo quanto descritto nella politica di divulgazione" /> <meta name="twitter:url" content="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_it" /> <meta property="og:image" content="https://commission.europa.eu/profiles/contrib/ewcms/modules/ewcms_seo/assets/images/ec-socialmedia-fallback.png" /> <meta property="og:image:alt" content="Commissione europea" /> <meta name="twitter:image" content="https://commission.europa.eu/profiles/contrib/ewcms/modules/ewcms_seo/assets/images/ec-socialmedia-fallback.png" /> <meta name="twitter:image:alt" content="Commissione europea" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <meta name="Generator" content="Drupal 10 (https://www.drupal.org)" /> <meta name="MobileOptimized" content="width" /> <meta name="HandheldFriendly" content="true" /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <script type="application/json">{"service":"etrans","renderAs":false,"user":"European Commission","exclude":".ecl-site-header__language-item,.ecl-site-header__language-selector,.toolbar","languages":{"source":"it","available":["bg","es","cs","da","de","et","el","en","fr","ga","hr","it","lv","lt","hu","mt","nl","pl","pt","ro","sk","sl","fi","sv"]},"config":{"live":false,"mode":"lc2023","targets":{"receiver":"#webtools-etrans"}}}</script> <script type="application/json">{"service":"preview","position":"before"}</script> <link rel="icon" href="/profiles/contrib/ewcms/themes/ewcms_theme/images/favicons/ec/favicon.ico" type="image/vnd.microsoft.icon" /> <link rel="alternate" hreflang="bg" href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_bg" /> <link rel="alternate" hreflang="es" href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_es" /> <link rel="alternate" hreflang="cs" href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_cs" /> <link rel="alternate" hreflang="da" href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_da" /> <link rel="alternate" hreflang="de" href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_de" /> <link rel="alternate" hreflang="et" href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_et" /> <link rel="alternate" hreflang="el" href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_el" /> <link rel="alternate" hreflang="en" href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_en" /> <link rel="alternate" hreflang="fr" href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_fr" /> <link rel="alternate" hreflang="ga" href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_ga" /> <link rel="alternate" hreflang="hr" href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_hr" /> <link rel="alternate" hreflang="it" href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_it" /> <link rel="alternate" hreflang="lv" href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_lv" /> <link rel="alternate" hreflang="lt" href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_lt" /> <link rel="alternate" hreflang="hu" href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_hu" /> <link rel="alternate" hreflang="mt" href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_mt" /> <link rel="alternate" hreflang="nl" href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_nl" /> <link rel="alternate" hreflang="pl" href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_pl" /> <link rel="alternate" hreflang="pt-pt" href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_pt" /> <link rel="alternate" hreflang="ro" href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_ro" /> <link rel="alternate" hreflang="sk" href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_sk" /> <link rel="alternate" hreflang="sl" href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_sl" /> <link rel="alternate" hreflang="fi" href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_fi" /> <link rel="alternate" hreflang="sv" href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_sv" /> <link rel="icon" href="/profiles/contrib/ewcms/themes/ewcms_theme/images/favicons/ec/favicon.svg" type="image/svg+xml" /> <link rel="apple-touch-icon" href="/profiles/contrib/ewcms/themes/ewcms_theme/images/favicons/ec/favicon.png" /> <title>Politica di divulgazione delle vulnerabilit脿 - Commissione europea</title> <link rel="stylesheet" media="all" href="/sites/default/files/css/css_E0trLxjZ08xx2-bYUIk8bNOOHgg-8aEs08g5lQle1oI.css?delta=0&language=it&theme=ewcms_theme&include=eJxtTe0KwyAMfCGpjySpzdowTYKJbL79ZLSUwX4cHPcpmPzAijFLVWFkT4XWBm0kzMGGOda4gmGQK6mN2AO-crVTeRCWLeHbsTGURFn4xz_5UNkb6DH-mLPic6DPeiF-WlBo8E1b3FpXKMutLJ21r4XswC2YQp3gCG60n8fXpUhx0g_wOltU" /> <link rel="stylesheet" media="all" href="/sites/default/files/css/css_mLUE_thb5nTPavpXGawZfMrskTEgPqunVakABR6iV7w.css?delta=1&language=it&theme=ewcms_theme&include=eJxtTe0KwyAMfCGpjySpzdowTYKJbL79ZLSUwX4cHPcpmPzAijFLVWFkT4XWBm0kzMGGOda4gmGQK6mN2AO-crVTeRCWLeHbsTGURFn4xz_5UNkb6DH-mLPic6DPeiF-WlBo8E1b3FpXKMutLJ21r4XswC2YQp3gCG60n8fXpUhx0g_wOltU" /> <link rel="stylesheet" media="print" href="/sites/default/files/css/css_bK35D3_dPyjb_dlLObCCrt97zQ63u--0DEvXDOkmxKY.css?delta=2&language=it&theme=ewcms_theme&include=eJxtTe0KwyAMfCGpjySpzdowTYKJbL79ZLSUwX4cHPcpmPzAijFLVWFkT4XWBm0kzMGGOda4gmGQK6mN2AO-crVTeRCWLeHbsTGURFn4xz_5UNkb6DH-mLPic6DPeiF-WlBo8E1b3FpXKMutLJ21r4XswC2YQp3gCG60n8fXpUhx0g_wOltU" /> <link rel="stylesheet" media="all" href="/sites/default/files/css/css_jMGhpbv_6M-gylIQY0UUqVmjj-r9d-ggiKhhqt43n6I.css?delta=3&language=it&theme=ewcms_theme&include=eJxtTe0KwyAMfCGpjySpzdowTYKJbL79ZLSUwX4cHPcpmPzAijFLVWFkT4XWBm0kzMGGOda4gmGQK6mN2AO-crVTeRCWLeHbsTGURFn4xz_5UNkb6DH-mLPic6DPeiF-WlBo8E1b3FpXKMutLJ21r4XswC2YQp3gCG60n8fXpUhx0g_wOltU" /> <link rel="stylesheet" media="print" href="/sites/default/files/css/css_b9FJ_v0CYWKDGP5uXcYLv1GutQmplJrV5UzLhHMSyUU.css?delta=4&language=it&theme=ewcms_theme&include=eJxtTe0KwyAMfCGpjySpzdowTYKJbL79ZLSUwX4cHPcpmPzAijFLVWFkT4XWBm0kzMGGOda4gmGQK6mN2AO-crVTeRCWLeHbsTGURFn4xz_5UNkb6DH-mLPic6DPeiF-WlBo8E1b3FpXKMutLJ21r4XswC2YQp3gCG60n8fXpUhx0g_wOltU" /> <link rel="stylesheet" media="all" href="/sites/default/files/css/css_HARlYiESO-_6hCwZV1CscsX-NvA5_Ax4xNwR0a5Axzs.css?delta=5&language=it&theme=ewcms_theme&include=eJxtTe0KwyAMfCGpjySpzdowTYKJbL79ZLSUwX4cHPcpmPzAijFLVWFkT4XWBm0kzMGGOda4gmGQK6mN2AO-crVTeRCWLeHbsTGURFn4xz_5UNkb6DH-mLPic6DPeiF-WlBo8E1b3FpXKMutLJ21r4XswC2YQp3gCG60n8fXpUhx0g_wOltU" /> </head> <body class="language-it ecl-typography path-node page-node-type-landing-page"> <a href="#main-content" class="ecl-link ecl-link--primary ecl-skip-link" id="skip-id" >Passa ai contenuti principali</a> <div id="cck_here"></div> <script type="application/json">{"utility":"globan","theme":"light","logo":true,"link":true,"mode":false}</script> <div class="dialog-off-canvas-main-canvas" data-off-canvas-main-canvas> <header class="ecl-site-header " data-ecl-auto-init="SiteHeader" > <div class="ecl-site-header__background"> <div class="ecl-site-header__header"> <div class="ecl-site-header__container ecl-container"> <div class="ecl-site-header__top" data-ecl-site-header-top> <a class="ecl-link ecl-link--standalone ecl-site-header__logo-link" href="https://commission.europa.eu/index_it" aria-label="Homepage - Commissione europea" data-aria-label-en="Home - European Commission" > <picture class="ecl-picture ecl-site-header__picture" title="Commissione europea" ><source srcset="/themes/contrib/oe_theme/dist/ec/images/logo/positive/logo-ec--it.svg" media="(min-width: 996px)" ><img class="ecl-site-header__logo-image" src="/themes/contrib/oe_theme/dist/ec/images/logo/logo-ec--mute.svg" alt="Logo della Commissione europea" ></picture> </a> <div class="ecl-site-header__action"> <div class="ecl-site-header__language"><a class="ecl-button ecl-button--tertiary ecl-site-header__language-selector" href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_it" data-ecl-language-selector role="button" aria-label="Change language, current language is italiano - it" aria-controls="language-list-overlay" ><span class="ecl-site-header__language-icon"><svg class="ecl-icon ecl-icon--s ecl-site-header__icon" focusable="false" aria-hidden="false" role="img"><title >it</title><use xlink:href="/themes/contrib/oe_theme/dist/ec/images/icons/sprites/icons.svg#global"></use></svg></span>it</a><div class="ecl-site-header__language-container" id="language-list-overlay" hidden data-ecl-language-list-overlay aria-labelledby="ecl-site-header__language-title" role="dialog"><div class="ecl-site-header__language-header"><div class="ecl-site-header__language-title" id="ecl-site-header__language-title" >Select your language</div><button class="ecl-button ecl-button--tertiary ecl-site-header__language-close ecl-button--icon-only" type="submit" data-ecl-language-list-close ><span class="ecl-button__container"><span class="ecl-button__label" data-ecl-label="true">Chiudi</span><svg class="ecl-icon ecl-icon--m ecl-button__icon" focusable="false" aria-hidden="true" data-ecl-icon><use xlink:href="/themes/contrib/oe_theme/dist/ec/images/icons/sprites/icons.svg#close"></use></svg></span></button></div><div class="ecl-site-header__language-content" data-ecl-language-list-content ><div class="ecl-site-header__language-category" data-ecl-language-list-eu><ul class="ecl-site-header__language-list"><li class="ecl-site-header__language-item"><a href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_bg" class="ecl-link ecl-link--standalone ecl-link--no-visited ecl-site-header__language-link" hreflang="bg" ><span class="ecl-site-header__language-link-code">bg</span><span class="ecl-site-header__language-link-label" lang="bg">斜褗谢谐邪褉褋泻懈</span></a></li><li class="ecl-site-header__language-item"><a href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_es" class="ecl-link ecl-link--standalone ecl-link--no-visited ecl-site-header__language-link" hreflang="es" ><span class="ecl-site-header__language-link-code">es</span><span class="ecl-site-header__language-link-label" lang="es">espa帽ol</span></a></li><li class="ecl-site-header__language-item"><a href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_cs" class="ecl-link ecl-link--standalone ecl-link--no-visited ecl-site-header__language-link" hreflang="cs" ><span class="ecl-site-header__language-link-code">cs</span><span class="ecl-site-header__language-link-label" lang="cs">膷e拧tina</span></a></li><li class="ecl-site-header__language-item"><a href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_da" class="ecl-link ecl-link--standalone ecl-link--no-visited ecl-site-header__language-link" hreflang="da" ><span class="ecl-site-header__language-link-code">da</span><span class="ecl-site-header__language-link-label" lang="da">dansk</span></a></li><li class="ecl-site-header__language-item"><a href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_de" class="ecl-link ecl-link--standalone ecl-link--no-visited ecl-site-header__language-link" hreflang="de" ><span class="ecl-site-header__language-link-code">de</span><span class="ecl-site-header__language-link-label" lang="de">Deutsch</span></a></li><li class="ecl-site-header__language-item"><a href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_et" class="ecl-link ecl-link--standalone ecl-link--no-visited ecl-site-header__language-link" hreflang="et" ><span class="ecl-site-header__language-link-code">et</span><span class="ecl-site-header__language-link-label" lang="et">eesti</span></a></li><li class="ecl-site-header__language-item"><a href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_el" class="ecl-link ecl-link--standalone ecl-link--no-visited ecl-site-header__language-link" hreflang="el" ><span class="ecl-site-header__language-link-code">el</span><span class="ecl-site-header__language-link-label" lang="el">蔚位位畏谓喂魏维</span></a></li><li class="ecl-site-header__language-item"><a href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_en" class="ecl-link ecl-link--standalone ecl-link--no-visited ecl-site-header__language-link" hreflang="en" ><span class="ecl-site-header__language-link-code">en</span><span class="ecl-site-header__language-link-label" lang="en">English</span></a></li><li class="ecl-site-header__language-item"><a href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_fr" class="ecl-link ecl-link--standalone ecl-link--no-visited ecl-site-header__language-link" hreflang="fr" ><span class="ecl-site-header__language-link-code">fr</span><span class="ecl-site-header__language-link-label" lang="fr">fran莽ais</span></a></li><li class="ecl-site-header__language-item"><a href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_ga" class="ecl-link ecl-link--standalone ecl-link--no-visited ecl-site-header__language-link" hreflang="ga" ><span class="ecl-site-header__language-link-code">ga</span><span class="ecl-site-header__language-link-label" lang="ga">Gaeilge</span></a></li><li class="ecl-site-header__language-item"><a href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_hr" class="ecl-link ecl-link--standalone ecl-link--no-visited ecl-site-header__language-link" hreflang="hr" ><span class="ecl-site-header__language-link-code">hr</span><span class="ecl-site-header__language-link-label" lang="hr">hrvatski</span></a></li><li class="ecl-site-header__language-item"><a href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_it" class="ecl-link ecl-link--standalone ecl-link--no-visited ecl-site-header__language-link ecl-site-header__language-link--active" hreflang="it" ><span class="ecl-site-header__language-link-code">it</span><span class="ecl-site-header__language-link-label" lang="it">italiano</span></a></li><li class="ecl-site-header__language-item"><a href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_lv" class="ecl-link ecl-link--standalone ecl-link--no-visited ecl-site-header__language-link" hreflang="lv" ><span class="ecl-site-header__language-link-code">lv</span><span class="ecl-site-header__language-link-label" lang="lv">latvie拧u</span></a></li><li class="ecl-site-header__language-item"><a href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_lt" class="ecl-link ecl-link--standalone ecl-link--no-visited ecl-site-header__language-link" hreflang="lt" ><span class="ecl-site-header__language-link-code">lt</span><span class="ecl-site-header__language-link-label" lang="lt">lietuvi懦</span></a></li><li class="ecl-site-header__language-item"><a href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_hu" class="ecl-link ecl-link--standalone ecl-link--no-visited ecl-site-header__language-link" hreflang="hu" ><span class="ecl-site-header__language-link-code">hu</span><span class="ecl-site-header__language-link-label" lang="hu">magyar</span></a></li><li class="ecl-site-header__language-item"><a href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_mt" class="ecl-link ecl-link--standalone ecl-link--no-visited ecl-site-header__language-link" hreflang="mt" ><span class="ecl-site-header__language-link-code">mt</span><span class="ecl-site-header__language-link-label" lang="mt">Malti</span></a></li><li class="ecl-site-header__language-item"><a href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_nl" class="ecl-link ecl-link--standalone ecl-link--no-visited ecl-site-header__language-link" hreflang="nl" ><span class="ecl-site-header__language-link-code">nl</span><span class="ecl-site-header__language-link-label" lang="nl">Nederlands</span></a></li><li class="ecl-site-header__language-item"><a href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_pl" class="ecl-link ecl-link--standalone ecl-link--no-visited ecl-site-header__language-link" hreflang="pl" ><span class="ecl-site-header__language-link-code">pl</span><span class="ecl-site-header__language-link-label" lang="pl">polski</span></a></li><li class="ecl-site-header__language-item"><a href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_pt" class="ecl-link ecl-link--standalone ecl-link--no-visited ecl-site-header__language-link" hreflang="pt" ><span class="ecl-site-header__language-link-code">pt</span><span class="ecl-site-header__language-link-label" lang="pt">portugu锚s</span></a></li><li class="ecl-site-header__language-item"><a href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_ro" class="ecl-link ecl-link--standalone ecl-link--no-visited ecl-site-header__language-link" hreflang="ro" ><span class="ecl-site-header__language-link-code">ro</span><span class="ecl-site-header__language-link-label" lang="ro">rom芒n膬</span></a></li><li class="ecl-site-header__language-item"><a href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_sk" class="ecl-link ecl-link--standalone ecl-link--no-visited ecl-site-header__language-link" hreflang="sk" ><span class="ecl-site-header__language-link-code">sk</span><span class="ecl-site-header__language-link-label" lang="sk">sloven膷ina</span></a></li><li class="ecl-site-header__language-item"><a href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_sl" class="ecl-link ecl-link--standalone ecl-link--no-visited ecl-site-header__language-link" hreflang="sl" ><span class="ecl-site-header__language-link-code">sl</span><span class="ecl-site-header__language-link-label" lang="sl">sloven拧膷ina</span></a></li><li class="ecl-site-header__language-item"><a href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_fi" class="ecl-link ecl-link--standalone ecl-link--no-visited ecl-site-header__language-link" hreflang="fi" ><span class="ecl-site-header__language-link-code">fi</span><span class="ecl-site-header__language-link-label" lang="fi">suomi</span></a></li><li class="ecl-site-header__language-item"><a href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_sv" class="ecl-link ecl-link--standalone ecl-link--no-visited ecl-site-header__language-link" hreflang="sv" ><span class="ecl-site-header__language-link-code">sv</span><span class="ecl-site-header__language-link-label" lang="sv">svenska</span></a></li></ul></div></div></div></div> <div class="ecl-site-header__search-container" role="search"> <a class="ecl-button ecl-button--tertiary ecl-site-header__search-toggle" href="" data-ecl-search-toggle="true" aria-controls="oe-search-search-form" aria-expanded="false" ><svg class="ecl-icon ecl-icon--s ecl-site-header__icon" focusable="false" aria-hidden="true" role="img"><use xlink:href="/themes/contrib/oe_theme/dist/ec/images/icons/sprites/icons.svg#search"></use></svg>Cerca </a> <form class="ecl-search-form ecl-site-header__search" role="search" action="/legal-notice/vulnerability-disclosure-policy_it" method="post" id="oe-search-search-form" accept-charset="UTF-8" data-ecl-search-form ><div class="ecl-form-group"><label for="edit-keys" id="edit-keys-label" class="ecl-form-label ecl-search-form__label" >Cerca</label><input id="edit-keys" class="ecl-text-input ecl-text-input--m ecl-search-form__text-input form-search ecl-search-form__text-input" name="keys" type="search" ></div><button class="ecl-button ecl-button--ghost ecl-search-form__button ecl-search-form__button" type="submit" ><span class="ecl-button__container"><svg class="ecl-icon ecl-icon--xs ecl-button__icon" focusable="false" aria-hidden="true" data-ecl-icon><use xlink:href="/themes/contrib/oe_theme/dist/ec/images/icons/sprites/icons.svg#search"></use></svg><span class="ecl-button__label" data-ecl-label="true">Cerca</span></span></button><input data-drupal-selector="form-enotvwccvp7byf7hjm6qdun7a-rnws1okk3filekuls" type="hidden" name="form_build_id" value="form-enoTVwCCVP7BYf7hJm6QDUn7a_RnwS1okk3FILeKuls" /><input data-drupal-selector="edit-oe-search-search-form" type="hidden" name="form_id" value="oe_search_search_form" /></form> <script type="application/json">{"service":"search","results":"in","form":".ecl-search-form","lang":"it","key":"europa_default"}</script> </div> </div> </div> </div> </div> </div> <div id="block-ewcms-theme-horizontal-menu"> </div> </header> <div class="ecl-u-mb-2xl" id="block-ewcms-theme-page-header"> <div class="ecl-page-header" ><div class="ecl-container"><nav class="ecl-breadcrumb ecl-page-header__breadcrumb" aria-label="Ti trovi qui:" aria-label="" data-ecl-breadcrumb="true" ><ol class="ecl-breadcrumb__container"><li class="ecl-breadcrumb__segment" data-ecl-breadcrumb-item="static"><a href="/index_it" class="ecl-link ecl-link--standalone ecl-link--no-visited ecl-breadcrumb__link" >Homepage</a><svg class="ecl-icon ecl-icon--fluid ecl-breadcrumb__icon" focusable="false" aria-hidden="true" role="presentation"><use xlink:href="/themes/contrib/oe_theme/dist/ec/images/icons/sprites/icons.svg#corner-arrow"></use></svg></li><li class="ecl-breadcrumb__segment" data-ecl-breadcrumb-item="static"><a href="/legal-notice_it" class="ecl-link ecl-link--standalone ecl-link--no-visited ecl-breadcrumb__link" >Note legali</a><svg class="ecl-icon ecl-icon--fluid ecl-breadcrumb__icon" focusable="false" aria-hidden="true" role="presentation"><use xlink:href="/themes/contrib/oe_theme/dist/ec/images/icons/sprites/icons.svg#corner-arrow"></use></svg></li><li class="ecl-breadcrumb__segment ecl-breadcrumb__current-page" data-ecl-breadcrumb-item="static" aria-current="page"><span>Politica di divulgazione delle vulnerabilit脿</span></li></ol></nav><div class="ecl-page-header__info"><h1 class="ecl-page-header__title"><span>Politica di divulgazione delle vulnerabilit脿</span></h1></div></div></div> </div> <main class="ecl-u-pb-xl" id="main-content" data-inpage-navigation-source-area="h2.ecl-u-type-heading-2, div.ecl-featured-item__heading"> <div class="ecl-container"> <div class="ecl-row"> <div class="ecl-col-s-12 ewcms-top-sidebar"> <div> <div data-drupal-messages-fallback class="hidden"></div> </div> </div> </div> <div class="ecl-row"> <div class="ecl-col-s-12"> <div id="block-ewcms-theme-main-page-content" data-inpage-navigation-source-area="h2, div.ecl-featured-item__heading" class="ecl-u-mb-l"> <article dir="ltr"> <div> <div class="ecl-u-mb-2xl"> <a id="paragraph_40227"></a> <h2 class="ecl-u-type-heading-2">Introduzione</h2> <div class="ecl"><p>In linea con la <a href="https://eur-lex.europa.eu/legal-content/IT/TXT/?uri=CELEX%3A32017D0046">decisione (CE) n. 2017/46</a>, la Commissione europea considera la sicurezza dei propri sistemi di comunicazione e informazione una priorit脿 assoluta.</p> <p>Tuttavia, nonostante i migliori sforzi, le vulnerabilit脿 non possono mai essere del tutto eliminate. Se vengono individuate e sfruttate, rischiano di minare la riservatezza, l'integrit脿 o la disponibilit脿 dei sistemi della Commissione europea e delle informazioni ivi trattate.</p> <p>La politica di divulgazione delle vulnerabilit脿 descrive quali sono i sistemi e i tipi di test autorizzati e come segnalare eventuali vulnerabilit脿 riscontrate. Invitiamo tutti gli utenti a seguire questa politica e a contattarci per mettere in evidenza i problemi di sicurezza individuati nei nostri sistemi.</p></div> </div> <div class="ecl-u-mb-2xl"> <a id="paragraph_40874"></a> <h2 class="ecl-u-type-heading-2">Autorizzazione</h2> <div class="ecl"><p>Nel rispetto della politica, collaboreremo con chiunque voglia individuare e segnalare in buona fede le vulnerabilit脿 dei sistemi della Commissione europea, in modo da poter comprendere e risolvere rapidamente i problemi.<br> La Commissione europea non avvier脿 azioni legali nei confronti di chiunque individui le vulnerabilit脿 dei nostri sistemi, a condizione che segua linee guida di questa politica.</p></div> </div> <div class="ecl-u-mb-2xl"> <a id="paragraph_40228"></a> <h2 class="ecl-u-type-heading-2">Ambito di applicazione</h2> <div class="ecl"><p>La presente politica si applica a tutti i sistemi Internet della Commissione europea, tra cui:</p> <ul> <li>l'intera presenza della Commissione europea sul web <ul> <li>*.ec.europa.eu/*</li> <li>*.commission.europa.eu/*</li> </ul> </li> <li>IP pubblici resi noti nell'ambito dell'ASN 42848 e servizi annessi</li> <li>qualsiasi altro software pubblicato dalla Commissione europea.</li> </ul> <p>I servizi non espressamente elencati qui sopra sono esclusi dall'ambito di applicazione della politica e non possono essere sottoposti a test.<br> Inoltre, sono escluse anche le vulnerabilit脿 riscontrate nei sistemi di fornitori, che vanno segnalate direttamente al fornitore in questione in base alla rispettiva politica in materia (se esistente).</p></div> </div> <div class="ecl-u-mb-2xl"> <a id="paragraph_40229"></a> <h2 class="ecl-u-type-heading-2">Linee guida</h2> <div class="ecl"><h3>Nello svolgimento delle attivit脿猫 indispensabile:</h3> <ul> <li>non approfittare della vulnerabilit脿 o del problema riscontrato, ad esempio scaricando pi霉 dati del necessario per dimostrare tale vulnerabilit脿, oppure cancellando o modificando i dati di altre persone</li> <li>utilizzare soltanto "exploit" innocui per confermare la presenza di una vulnerabilit脿</li> <li>non rivelare al pubblico o ad altre parti i dati scaricati durante la scoperta della vulnerabilit脿</li> <li>non rivelare al pubblico o ad altre parti la vulnerabilit脿 o il problema finch茅 non sia stata trovata una soluzione</li> <li>interrompere i test quando si scoprono informazioni sensibili (informazioni personali identificabili, informazioni mediche, finanziarie, di propriet脿 esclusiva o segreti commerciali), segnalandole immediatamente e non divulgando i dati ottenuti ad altri.</li> </ul> <h3>Non eseguire le seguenti azioni:</h3> <ul> <li>collocare malware (virus, worm, cavalli di Troia, ecc.) su qualsiasi sistema</li> <li>compromettere i sistemi utilizzando "exploit" per ottenere un controllo totale o parziale</li> <li>copiare, modificare o cancellare i dati dal sistema</li> <li>apportare modifiche al sistema</li> <li>accedere ripetutamente al sistema o condividere l'accesso con altre parti</li> <li>sfruttare qualsiasi accesso ottenuto per tentare di accedere ad altri sistemi</li> <li>modificare i diritti di accesso di altri utenti</li> <li>utilizzare strumenti di scansione automatizzata</li> <li>eseguire un cosiddetto "attacco a forza bruta" per accedere a qualsiasi sistema</li> <li>utilizzare la negazione del servizio ("denial-of-service") o l'ingegneria social (phishing, vishing, spam, ecc.)</li> <li>eseguire attacchi alla sicurezza fisica.</li> </ul></div> </div> <div class="ecl-u-mb-2xl"> <a id="paragraph_40230"></a> <h2 class="ecl-u-type-heading-2">Segnalazione di una vulnerabilit脿</h2> <div class="ecl"><h3>Comportamenti auspicabili</h3> <p>Una volta individuata una vulnerabilit脿, occorre:</p> <ul> <li>inviare quanto prima le informazioni del caso all'indirizzo <span class="spamspan" data-spamspan-class="ecl-link"><span class="u">EC-VULNERABILITY-DISCLOSURE</span><img class="spamspan-image" alt="at" src="/modules/contrib/spamspan/image.gif"><span class="d">ec<span class="o"> [dot] </span>europa<span class="o"> [dot] </span>eu</span><span class="t"> (EC-VULNERABILITY-DISCLOSURE[at]ec[dot]europa[dot]eu)</span></span>, specificando se si acconsente o meno a rendere pubblico il proprio nome o pseudonimo come scopritore del problema</li> <li>criptare le informazioni utilizzando la <a href="https://ec.europa.eu/assets/digit/pgpkey/ec-vulnerability-disclosure-pgp.txt" class="ecl-link">chiave PGP</a> per evitare che finiscano nelle mani sbagliate</li> <li>fornire informazioni sufficienti a riprodurre il problema, in modo da poterlo risolvere il pi霉 rapidamente possibile. Di solito sono sufficienti l'indirizzo IP o l'URL del sistema interessato e una descrizione della vulnerabilit脿, ma le vulnerabilit脿 complesse possono richiedere ulteriori spiegazioni in termini di informazioni tecniche o di un eventuale codice "proof-of-concept"</li> <li>effettuare la segnalazione preferibilmente in inglese, oppure in qualsiasi altra lingua ufficiale dell'Unione europea.</li> </ul></div> </div> <div class="ecl-u-mb-2xl"> <a id="paragraph_40231"></a> <div class="ecl"><h3>Impegno della Commissione</h3> <p>Da parte nostra, nei confronti di chi segnala una vulnerabilit脿 ci impegniamo a:</p> <ul> <li>dare una risposta entro tre (3) giorni lavorativi dalla segnalazione fornendo una valutazione del problema</li> <li>esaminare la segnalazione con la massima riservatezza</li> <li>ove possibile, comunicare quando 猫 stato posto rimedio alla vulnerabilit脿</li> <li>trattare i dati personali forniti (ad esempio l'indirizzo e-mail e il nome) conformemente alla legislazione vigente in materia di protezione dei dati e non trasmetterli a terzi senza il consenso dell'interessato</li> <li>pubblicare il nome di chi scopre il problema, se nell'e-mail iniziale ha dato il proprio consenso in proposito, quando e se il problema viene divulgato pubblicamente.</li> </ul></div> </div> </div> </article> </div> </div> </div> <div class="ecl-row"> <div class="ecl-col-s-12"> <div> <div id="block-ewcms-theme-socialshare"> <div class="ecl-social-media-share"> <p class="ecl-social-media-share__description"> Condividi questa pagina </p> <script type="application/json">{"service":"share","version":"2.0","networks":["twitter","facebook","linkedin","email","more"],"display":"icons","stats":true,"selection":true}</script> </div> </div> </div> </div> </div> </div> </main> <div id="block-ewcms-theme-pagefeedbackform"> <script type="application/json">{"service":"dff","id":"mKCuJxpV_dff_v2","lang":"it","version":"2.0"}</script> </div> <footer class="ecl-site-footer ecl-site-footer--split-columns" data-logo-area-label-en="Home - European Commission" ><div class="ecl-container ecl-site-footer__container"><div class="ecl-site-footer__row"><div class="ecl-site-footer__column"><div class="ecl-site-footer__section"><a href="https://commission.europa.eu/index_it" class="ecl-link ecl-link--standalone ecl-site-footer__logo-link" ><picture class="ecl-picture ecl-site-footer__picture" title="Commissione europea" ><source srcset="/themes/contrib/oe_theme/dist/ec/images/logo/negative/logo-ec--it.svg" media="(min-width: 996px)" ><img class="ecl-site-footer__logo-image" src="/themes/contrib/oe_theme/dist/ec/images/logo/negative/logo-ec--it.svg" alt="Logo della Commissione europea" ></picture></a><div class="ecl-site-footer__description">Il sito 猫 gestito da:<br />Direzione generale della Comunicazione</div></div></div><div class="ecl-site-footer__column"><div class="ecl-site-footer__section ecl-site-footer__section--separator"><ul class="ecl-site-footer__list ecl-site-footer__list--columns"><li class="ecl-site-footer__list-item"><a href="https://commission.europa.eu/strategy_it" class="ecl-link ecl-link--standalone ecl-link--inverted ecl-site-footer__link" data-section-label-untranslated="class_navigation" data-footer-link-label="Strategy" >Strategia</a></li><li class="ecl-site-footer__list-item"><a href="https://commission.europa.eu/about-european-commission_it" class="ecl-link ecl-link--standalone ecl-link--inverted ecl-site-footer__link" data-section-label-untranslated="class_navigation" data-footer-link-label="About the European Commission" >La Commissione europea</a></li><li class="ecl-site-footer__list-item"><a href="https://commission.europa.eu/business-economy-euro_it" class="ecl-link ecl-link--standalone ecl-link--inverted ecl-site-footer__link" data-section-label-untranslated="class_navigation" data-footer-link-label="Business, Economy, Euro" >Imprese, economia, euro</a></li><li class="ecl-site-footer__list-item"><a href="https://commission.europa.eu/live-work-travel-eu_it" class="ecl-link ecl-link--standalone ecl-link--inverted ecl-site-footer__link" data-section-label-untranslated="class_navigation" data-footer-link-label="Live, work, travel in the EU" >Vivere, lavorare, viaggiare nell'UE</a></li><li class="ecl-site-footer__list-item"><a href="https://commission.europa.eu/law_it" class="ecl-link ecl-link--standalone ecl-link--inverted ecl-site-footer__link" data-section-label-untranslated="class_navigation" data-footer-link-label="Law" >Diritto</a></li><li class="ecl-site-footer__list-item"><a href="https://commission.europa.eu/funding-tenders_it" class="ecl-link ecl-link--standalone ecl-link--inverted ecl-site-footer__link" data-section-label-untranslated="class_navigation" data-footer-link-label="Funding, Tenders" >Finanziamenti, appalti</a></li><li class="ecl-site-footer__list-item"><a href="https://commission.europa.eu/research-and-innovation_it" class="ecl-link ecl-link--standalone ecl-link--inverted ecl-site-footer__link" data-section-label-untranslated="class_navigation" data-footer-link-label="Research and innovation" >Ricerca e innovazione</a></li><li class="ecl-site-footer__list-item"><a href="https://commission.europa.eu/energy-climate-change-environment_it" class="ecl-link ecl-link--standalone ecl-link--inverted ecl-site-footer__link" data-section-label-untranslated="class_navigation" data-footer-link-label="Energy, Climate change, Environment" >Energia, cambiamenti climatici, ambiente</a></li><li class="ecl-site-footer__list-item"><a href="https://commission.europa.eu/education_it" class="ecl-link ecl-link--standalone ecl-link--inverted ecl-site-footer__link" data-section-label-untranslated="class_navigation" data-footer-link-label="Education" >Istruzione</a></li><li class="ecl-site-footer__list-item"><a href="https://commission.europa.eu/aid-development-cooperation-fundamental-rights_it" class="ecl-link ecl-link--standalone ecl-link--inverted ecl-site-footer__link" data-section-label-untranslated="class_navigation" data-footer-link-label="Aid, Development cooperation, Fundamental rights" >Aiuti, cooperazione allo sviluppo, diritti fondamentali</a></li><li class="ecl-site-footer__list-item"><a href="https://commission.europa.eu/food-farming-fisheries_it" class="ecl-link ecl-link--standalone ecl-link--inverted ecl-site-footer__link" data-section-label-untranslated="class_navigation" data-footer-link-label="Food, Farming, Fisheries" >Prodotti alimentari, agricoltura, pesca</a></li><li class="ecl-site-footer__list-item"><a href="https://commission.europa.eu/eu-regional-and-urban-development_it" class="ecl-link ecl-link--standalone ecl-link--inverted ecl-site-footer__link" data-section-label-untranslated="class_navigation" data-footer-link-label="EU regional and urban development" >Sviluppo regionale e urbano nell'UE</a></li><li class="ecl-site-footer__list-item"><a href="https://commission.europa.eu/jobs-european-commission_it" class="ecl-link ecl-link--standalone ecl-link--inverted ecl-site-footer__link" data-section-label-untranslated="class_navigation" data-footer-link-label="Jobs at the European Commission" >Lavorare alla Commissione europea</a></li><li class="ecl-site-footer__list-item"><a href="https://commission.europa.eu/statistics_it" class="ecl-link ecl-link--standalone ecl-link--inverted ecl-site-footer__link" data-section-label-untranslated="class_navigation" data-footer-link-label="Statistics" >Statistiche</a></li><li class="ecl-site-footer__list-item"><a href="https://ec.europa.eu/commission/presscorner/home/it" class="ecl-link ecl-link--standalone ecl-link--inverted ecl-site-footer__link" data-section-label-untranslated="class_navigation" data-footer-link-label="Press Corner" >L'angolo della stampa</a></li><li class="ecl-site-footer__list-item"><a href="https://commission.europa.eu/events_it" class="ecl-link ecl-link--standalone ecl-link--inverted ecl-site-footer__link" data-section-label-untranslated="class_navigation" data-footer-link-label="Events" >Eventi</a></li><li class="ecl-site-footer__list-item"><a href="https://commission.europa.eu/publications_it" class="ecl-link ecl-link--standalone ecl-link--inverted ecl-site-footer__link" data-section-label-untranslated="class_navigation" data-footer-link-label="Publications" >Pubblicazioni</a></li></ul></div><div class="ecl-site-footer__section"><ul class="ecl-site-footer__list"><li class="ecl-site-footer__list-item"><a href="https://commission.europa.eu/about-european-commission/contact_it" class="ecl-link ecl-link--standalone ecl-link--inverted ecl-site-footer__link" data-section-label-untranslated="service_navigation" data-footer-link-label="Contact the European Commission" >Contattare la Commissione europea</a></li><li class="ecl-site-footer__list-item"><a href="https://commission.europa.eu/accessibility-statement_it" class="ecl-link ecl-link--standalone ecl-link--inverted ecl-site-footer__link" data-is-accessibility-link="true" >Accessibilit脿</a></li><li class="ecl-site-footer__list-item"><a href="https://european-union.europa.eu/contact-eu/social-media-channels_it#/search?page=0&institutions=european_commission" class="ecl-link ecl-link--standalone ecl-link--inverted ecl-site-footer__link" data-section-label-untranslated="service_navigation" data-footer-link-label="Follow the European Commission on social media" >Segui la Commissione europea sui social media</a></li><li class="ecl-site-footer__list-item"><a href="https://commission.europa.eu/resources-partners_it" class="ecl-link ecl-link--standalone ecl-link--inverted ecl-site-footer__link" data-section-label-untranslated="service_navigation" data-footer-link-label="Resources for partners" >Risorse per i partner</a></li><li class="ecl-site-footer__list-item"><a href="https://commission.europa.eu/legal-notice/vulnerability-disclosure-policy_it" class="ecl-link ecl-link--standalone ecl-link--inverted ecl-site-footer__link" data-section-label-untranslated="service_navigation" data-footer-link-label="Report an IT vulnerability" >Segnalare una vulnerabilit脿 informatica</a></li></ul></div><div class="ecl-site-footer__section"><ul class="ecl-site-footer__list"><li class="ecl-site-footer__list-item"><a href="https://commission.europa.eu/languages-our-websites_it" class="ecl-link ecl-link--standalone ecl-link--inverted ecl-site-footer__link" data-section-label-untranslated="legal_navigation" data-footer-link-label="Languages on our websites" >Le lingue sui nostri siti web</a></li><li class="ecl-site-footer__list-item"><a href="https://commission.europa.eu/cookies_it" class="ecl-link ecl-link--standalone ecl-link--inverted ecl-site-footer__link" data-section-label-untranslated="legal_navigation" data-footer-link-label="Cookies" >Cookie</a></li><li class="ecl-site-footer__list-item"><a href="https://commission.europa.eu/privacy-policy_it" class="ecl-link ecl-link--standalone ecl-link--inverted ecl-site-footer__link" data-section-label-untranslated="legal_navigation" data-footer-link-label="Privacy policy" >Politica in materia di privacy</a></li><li class="ecl-site-footer__list-item"><a href="https://commission.europa.eu/legal-notice_it" class="ecl-link ecl-link--standalone ecl-link--inverted ecl-site-footer__link" data-section-label-untranslated="legal_navigation" data-footer-link-label="Legal notice" >Note legali</a></li></ul></div></div></div></div></footer> </div> <script type="application/json">{"utility":"piwik","siteID":"0ccd2154-5091-4eff-83f3-1b423f81600c","sitePath":["commission.europa.eu"],"instance":"ec","dimensions":[{"id":3,"value":"Landing Page"},{"id":4,"value":"cybersecurity data-protection"},{"id":5,"value":"Directorate-General-for-Communication"},{"id":6,"value":"Vulnerability Disclosure Policy (VDP)"},{"id":7,"value":"2bbdb661-0737-4eba-83e9-ecb86d3797cc"},{"id":8,"value":"EC - CORE"},{"id":9,"value":"cybersecurity data-processing data-protection information-policy"}]}</script> <script type="application/json">{"utility":"cck"}</script> <script type="application/json" data-drupal-selector="drupal-settings-json">{"path":{"baseUrl":"\/","pathPrefix":"","currentPath":"node\/30306","currentPathIsAdmin":false,"isFront":false,"currentLanguage":"it","urlSuffixes":["bg","es","cs","da","de","et","el","en","fr","ga","hr","it","lv","lt","hu","mt","nl","pl","pt","ro","sk","sl","fi","sv","ar","ca","is","lb","no","tr","ru","uk","zh","sw","he","ja"]},"pluralDelimiter":"\u0003","suppressDeprecationErrors":true,"ajaxTrustedUrl":{"form_action_p_pvdeGsVG5zNF_XLGPTvYSKCf43t8qZYSwcfZl2uzM":true},"user":{"uid":0,"permissionsHash":"cba3110261ccc4cd2f2834d1ff2caeb969cefcaec065dc43ab970f003788644f"}}</script> <script src="/sites/default/files/js/js_NbgQnt2RBldrw_-dvQs6z0iTQFlHNJRCz63xn6ROW40.js?scope=footer&delta=0&language=it&theme=ewcms_theme&include=eJxVjeEKg0AMg1_IzUcqtXZ60Gul7el8-x1DGfsRSPhCYgwHT2kmMc7eNpTnnR9R0VMMZ_bBGHLlyiNZ3UxZE6RMjn4C04_yO9kVBWJfBj6oxg2-Hjs6s1BcrDbJIkWXhnJVKtJatO85aghmMQW1frbz_yBBNN_5HGLD2qWjTa8WhMkfpghVbQ"></script> <script src="https://webtools.europa.eu/load.js" defer></script> <script src="/sites/default/files/js/js_fyAWnf14Pu8o-ylCl14AU8241iQASci_Cuz5-1xoprA.js?scope=footer&delta=2&language=it&theme=ewcms_theme&include=eJxVjeEKg0AMg1_IzUcqtXZ60Gul7el8-x1DGfsRSPhCYgwHT2kmMc7eNpTnnR9R0VMMZ_bBGHLlyiNZ3UxZE6RMjn4C04_yO9kVBWJfBj6oxg2-Hjs6s1BcrDbJIkWXhnJVKtJatO85aghmMQW1frbz_yBBNN_5HGLD2qWjTa8WhMkfpghVbQ"></script> <script src="https://ec.europa.eu/wel/surveys/wr_survey01/wr_survey.js" defer></script> <script src="/sites/default/files/js/js_qikC1k8zI4HV8EF6GLFir29mS7XyapHyr32zCIQIkzc.js?scope=footer&delta=4&language=it&theme=ewcms_theme&include=eJxVjeEKg0AMg1_IzUcqtXZ60Gul7el8-x1DGfsRSPhCYgwHT2kmMc7eNpTnnR9R0VMMZ_bBGHLlyiNZ3UxZE6RMjn4C04_yO9kVBWJfBj6oxg2-Hjs6s1BcrDbJIkWXhnJVKtJatO85aghmMQW1frbz_yBBNN_5HGLD2qWjTa8WhMkfpghVbQ"></script> </body> </html>