Botslab Smart Camera

• Target Device

Botslab Smart Camera (versions: Indoor Cam 2C211、Indoor Cam 2EC212、Indoor Cam C201)

• Scope

Logic vulnerabilities, system vulnerabilities, internal dependencies vulnerabilities.

• Remote Information Disclosure: Reward up to $50,000

Unauthorized capture of encrypted video traffic and decryption of ciphertext into plaintext outside of the LAN (The decrypting method has to be repeatable and generalizable.)

• Code Execution in Local Area Network (LAN): Reward up to $25,000

Unauthorized root access and arbitrary code execution by sending malicious packets within the LAN (Physical contact such as disassembling is not allowed.)

• Remote Denial of Service: Reward up to $7,000

Device system damage by malicious packets sending.

Botslab DoorBell

• Target Device

Botslab Video Doorbell2Pro R811

• Scope

Logic vulnerabilities, system vulnerabilities, internal dependencies vulnerabilities.

• Remote Information Disclosure: Reward up to $50,000

Unauthorized capture of encrypted video traffic and decryption of ciphertext into plaintext outside of the LAN (The decrypting method has to be repeatable and generalizable.)

• Code Execution in Local Area Network (LAN): Reward up to $25,000

Unauthorized root access and arbitrary code execution by sending malicious packets within the LAN (Physical contact such as disassembling is not allowed.)

• Remote Denial of Service: Reward up to $7,000

Device system damage by malicious packets sending.

Botslab Watch

• Target Device

Botslab Kids Watch E3

• Scope

Logic vulnerabilities, system vulnerabilities, internal dependencies vulnerabilities.

• Remote Exploits: Reward up to $50,000

Vulnerabilities such as code execution and command execution caused by some remote exploits like downloading and remote protocol connections.

Critical: Default execution beyond the original function without interaction.

High: Default execution beyond the original function with interaction.

• Local Exploituon: Local Exploits: Reward up to $13,000

Vulnerabilities that can execute arbitrary code or program caused by certain non-contact circumstances like Wi-Fi network or blue tooth communication.

Critical: Default execution beyond the original function without interaction.

High: Default execution beyond the original function with interaction.

• Denial of Service and other special vulnerabilities: Reward up to $13,000

Flaws that can be exploited to attack resident service or bottom drive program and make the device in downstate. Others will be processed as normal program bugs.

Botslab Dash Cam

• Target Device

Botslab Dash Cam (versions: Dash Cam G580H、Dash Cam HK30)

• Scope

Logic vulnerabilities, system vulnerabilities, internal dependencies vulnerabilities.

• Remote Exploits: Reward up to $50,000

This rating is given to flaws such as code execution and command execution caused by some remote exploits like downloading and remote links.

Critical: Default execution beyond the original function without interaction.

High: Default execution beyond the original function with interaction.

• Code Execution in Local Area Network (LAN): Reward up to $13,000

The unauthorized attacker out of or in the same LAN gain root privilege and execute arbitrary code by sending malicious packets.(Physical contact like disassembling is not allowed.)

Critical: Default execution beyond the original function without interaction.

High: Default execution beyond the original function with interaction.

• Unauthenticated Access: Reward up to $13,000

The unauthorized attacker gets arbitrary data of device without physical contact. (The decryption method can be commonly used.)

Web/Server

• Critical

1. Vulnerabilities that directly grant access to core server permissions, including but not limited to uploading Web shells, arbitrary code execution, remote command execution, etc.

2. Vulnerabilities directly resulting in severe information leakage, including but not limited to SQL injection in important databases, lax system permission controls leading to sensitive data leaks, etc.

3. Logic vulnerabilities directly resulting in significant impacts, including but not limited to flaws in the authentication logic of core account systems, payment logic vulnerabilities, etc.

• High

1. Vulnerabilities leading to the leakage of sensitive information in critical business operations, including but not limited to important user information, order information, data file information, etc.

2. Logic vulnerabilities in critical business operations, including but not limited to bypassing permissions.

3. Non-interactive critical business vulnerabilities, including but not limited to directory traversal, arbitrary file inclusion, arbitrary file reading, etc.

4. Unauthorized access containing sensitive business information, including but not limited to bypassing authentication to directly access the management backend, weak backend passwords, SSRF vulnerabilities that can directly obtain a large amount of sensitive internal network information, etc.

• Moderate

1. Security vulnerabilities that harm users without interaction, including but not limited to stored XSS vulnerabilities on general pages, etc.

2. Common information disclosure vulnerabilities, including but not limited to user information leakage and business-sensitive information leakage, etc.

3. Common logical design flaws and process flaws, including but not limited to viewing non-core system order information and records without authorization.

4. Other vulnerabilities causing moderate impacts, such as SQL injection without sensitive information, SSRF vulnerabilities without echo, etc.

Business\Classification	Critical	High	Moderate
Base Reward	700-1400	140-500	14-140
Extra Reward	1400-14000

*Currency: USD ($)

Mobile Client

• Critical

Remote Code Execution

This classification is given to flaws of functions of 360 products (not including vulnerabilities of Android/iOS system), and flaws that could be easily exploited by a remote unauthorized attacker to execute arbitrary code and command.

• High

Local Cross-application

This classification is given to flaws (including but not limited to) of functions of 360 products (not including vulnerabilities of Android/iOS system). These are the types of vulnerabilities that allow third-party apps to gain privileges that can threat the confidentiality, integrity and availability of the data on the target system.

• Moderate

Sensitive User Information Leakage

This classification is given to flaws (including but not limited to) that can threat the sensitive resources of 360 mobile clients (not including bugs of Android/iOS system).

Business\Classification	Critical	High	Moderate
Base Reward	140-1400	140-400	14-140

*Currency: USD ($)

Client

• Critical

Remote Code Execution

• High

Privilege Escalation

• Moderate

Denial of Service

• Low

Avoiding Defense

• Products

360 Total Security Essential

360 Total Security for Mac

360 Security for Android

360 Premium Membership

Business\Classification	Critical Remote Code Execution	High Privilege Escalation	Moderate Denial of Service	Low Avoiding Defense
Core Business	70-1400	40-700	14-260	14-260
Important Business	40-700	25-350	14-140	14-140

*Currency: USD ($)