The Nortel Security Advisory Task Force (SATF) works with outside security advisory organizations such as NISCC* and the CERT Coordination Center* (CERT) to understand current vulnerabilities and their potential impact to Nortel products.

Known vulnerabilities and mitigation actions are announced through the advisory organizations' websites. Nortel responds to these issues with product Security Advisory bulletins as needed. The issues and response are communicated through our customers' Global Network Product Support representatives worldwide. Nortel Security Advisory Bulletins can be found on the Technical Support web site.

View Nortel Security Bulletins

Send us an email to report a suspected security vulnerability in a Nortel product.

Register to receive automatic notices of all newly released Security Advisory bulletins. >>

Some Nortel products and solutions are delivered on Microsoft Windows operating systems; others include clients which may reside on a customer's Microsoft Windows desktop or server. Since there is a potential for these products to be affected by security vulnerabilities in Microsoft Windows, Nortel generally issues impact statements soon after any public announcement of such vulnerabilities.

Microsoft Corporation generally announces security vulnerabilities in its products by issuing Security Bulletins on the second Tuesday of every month, if required. Microsoft's Security Bulletins include information on the availability of Security Updates and categorize the severity of the security vulnerability as "Critical", "Important", or "Moderate".

For Security Bulletins rated by Microsoft as "Critical", Nortel generally assesses the impact of applying available Security Updates to potentially affected Nortel products, and issues guidance to customers within two business days, in the form of Nortel Security Advisory Bulletins posted to the Technical Support web site.