This message initiates coordinated vulnerability disclosure (CVD) for cimgroup-com under ISO/IEC 29147 and RFC 9116. Findings span exposure, access-control, and data-handling conditions with potential material impact. Technical detail is withheld until an authorized secure channel is established, per CVD protocol.
Upon channel verification, validation summary follows; full advisory under a standard 90-day disclosure timeline. CVE coordination in progress. Acknowledgment within 72 hours appreciated. Continued silence will follow ISO/IEC 30111 escalation procedure.
Per-target URL: https://saviourr.org/r/lookup?slug=cimgroup-com
Master manifest (UAM-1, signed): saviourr.org/uam-1.json
CSAF feed: /.well-known/csaf/feeds/all.json
security.txt: /.well-known/security.txt
PGP fingerprint: E99E 899C CBE3 B8EE 3763 1D33 54DE 7051 3B5A DA07
PGP key: /.well-known/openpgpkey/researcher.asc
Encrypted contact form (browser-side PGP, no signup): saviourr.org
— MSK · Independent Security Researcher · saviourr.org
Signed-By: E99E899CCBE3B8EE37631D3354DE70513B5ADA07 · Verifiable: /.well-known/openpgpkey/researcher.asc