After maintaining the same vulnerability rewards for five years, Mozilla decided to increase its monetary acknowledgement for bugs reported by external security researchers. The quality of the report, severity of the flaw and a clear description of how it can be exploited are important criteria for setting the value of the reward.
|
|
Full Story |