Security Advisories
CDN77 publishes security advisories on this page when a vulnerability affecting our customer-facing CDN service requires customer awareness or action. Each advisory carries an ID, affected component, CVSS v3.1 severity, status, customer impact, and any required mitigation.
Current status
No active advisories.
Last reviewed: 2026-04-19.
What we publish here
Advisories are published for vulnerabilities in our customer-facing CDN service when the issue either (a) requires a customer action or awareness, or (b) has been remediated and a customer would reasonably want to know.
The following are tracked internally and are not published on this page: vulnerabilities under coordinated disclosure embargo (until the embargo lifts); issues confined to internal systems with no customer-visible impact; routine third-party CVEs that we patch within our internal SLA and that do not require customer action.
Advisory format
When an advisory is published, it carries:
- Advisory ID (format
CDN77-SA-YYYY-NNN) - Publication date and last-updated date
- Affected component
- Associated CVE(s) where applicable
- CVSS v3.1 base score and qualitative severity
- Status: Open / Mitigated / Fixed / Won't-fix (with reason)
- Customer impact
- Required or recommended customer mitigation
- Remediation plan and target date if not yet fixed
Update cadence
This page is updated when an advisory is published or its status changes, and is reviewed for staleness at least once every six months.
Contact
- Security questions and vulnerability reports: security@cdn77.com
- Service issues: support@cdn77.com