null

FREE NEXT DAY DELIVERY - On Orders Placed Before 3pm Mon - Thurs. (Excludes Ride-ons, Fortis and Chippers: 3-5 Days Delivery) 

FREE ENGINE OIL - With every order of a Cobra petrol powered product.

Dive into our newest collection of eco-friendly Cordless Products products! Let's make a difference together.

Vulnerability Disclosure Policy

Vulnerability Disclosure Policy

Issuing Authority:  Cobra Garden

Version Date:      2026/3/9

 

  1. Policy Statement

Our company is committed to maintaining the security and integrity of Cobra Garden, as well as our future product offerings. We place great importance on product security governance and strictly adhere to the principles of Responsible Disclosure . We sincerely invite security researchers, industry organizations, customers, and suppliers to collaborate with us in identifying and reporting potential security vulnerabilities associated with our products.

  1. Reporting Channels and Guidelines

If you discover or encounter any security issues within our products and services, please report them via the official channels listed below:

Reporting Email: info@cobragarden.co.uk

Email Subject Format: [Security Report] -
(e.g., [Security Report] XXX Product - Remote Code Execution)

  1. Report Content Requirements

To ensure the efficient reproduction and assessment of the vulnerability, please include the following key information, or any other necessary details, in the body of your email:

Required Information

Detailed Requirements

Reporter 

Name/Organization Name, Valid Contact Information (Email/Phone/Instant Messaging)

Vulnerability Overview

Vulnerability Type, Potential Threat Level, Scope of Affected Assets

Affected Models

Product Full Name, Specific Version Number, Hardware/Firmware Version, and Operating Environment

Technical Details

Detailed Reproduction Steps, Proof of Concept (POC) Code, and Exploit Demo or Screenshot Evidence

Remediation Suggestions

(Optional) Mitigation Measures or Remediation Suggestions for this Vulnerability

 

  1. Response and Handling Process

We are committed to rigorously handling all compliant reports and respecting the contributions of every security researcher:

  • Dedicated Handling: A dedicated member of our security team will be assigned to receive, analyze, and track your report.
  • Initial Response: We will send an initial confirmation email within 10 business days of receiving a complete report.
  • Progress Updates: We will continuously follow up on the vulnerability remediation progress and regularly update you on the status until a patch is released or the issue is fully resolved.
  • Risk Assessment: We prioritize vulnerabilities based on their severity to ensure that high-risk issues are addressed promptly.
  1. Disclaimer and Precautions
  • Response Timeline: Actual response and remediation times may vary depending on the technical complexity of the vulnerability, its risk level (ranging from low to critical), and the allocation of remediation resources.
  • Responsible Disclosure: We strongly recommend that researchers refrain from disclosing vulnerability details to third parties or public media until a fix has been implemented and a patch is released, in order to prevent potential security threats to our users.
  • Compliant Testing: Please conduct testing solely within environments where you have legal authorization. Our company reserves the right to take legal action against any unauthorized intrusion, disruption of production environments, or testing activities that impact user services.

 

Cobra Garden 2026/3/9