Legal & Product Compliance

Vulnerability Disclosure Policy

Information on how to report security issues:

Publication of Vulnerability Disclosure Policy:

KENRO will resolve the issue within 6 working days after receiving your report. Please submit vulnerability reports via our dedicated email address: support@kenro.co.uk.

The process is as follows:

a) Acknowledge receipt.
b) Upon receiving a vulnerability report, KENRO will verify the reported vulnerability and research a solution.
c) Conduct quality assurance/validation testing on the solution.
d) Release the solution after the verification tests are successful.

KENRO will manage the release of patches or security fixes using existing customer notification processes, such as OTA releases (over-the-air upgrades), and will also publish the solution on our website. Critical risk vulnerabilities will be fixed within 6 working days. High and medium risk vulnerabilities will be fixed within 30 working days. Low risk vulnerabilities will be fixed within 180 working days. Note that some vulnerabilities may be subject to environmental or hardware limitations. The final remediation time will be determined based on the actual situation.

We will produce status updates as soon as possible until the issue is resolved.

 

Product Security Support Policy:

Information on minimum security update periods:

Product Name: Kenro Smart Lite RGB Compact LED COB Light Kenro Smart Lite Bi-Colour Compact LED COB Light Kenro Smart Lite 19" RGB Ring Light Kit Kenro Smart Lite RGB Compact LED Video Light Kenro Smart Lite RGB Video Light Panel
Product Model: KSLC102 KSLC101 KSLR101 KSLP102 KSLP103
Mobile App: Light Control Light Control LightSystem Light Control LightSystem
Product Hardware Security Update Support Period: 17/07/2026 17/07/2026 17/07/2026 17/07/2026 17/07/2026
Mobile App Support Period: 17/07/2026 17/07/2026 17/07/2026 17/07/2026 17/07/2026
Updated date: 17/07/2024 17/07/2024 17/07/2024 17/07/2024 17/07/2024

 

Note: The explanation is as follows:

Security Update Scope:

a) Incorrect colour temperature
b) colour confusion
c) application crashes
d) uncontrollable application behaviour
e) system updates and system security vulnerabilities
f) application vulnerabilities.

If you have any hardware or software issues, users can obtain the vulnerability disclosure policy from the URL https://www.kenro.co.uk/pages/legal-product-compliance-1