outscale
8
In Scope
11
Out of Scope
In-Scope Assets (8)
| Asset | Category | Bounty | Quick Links | |
|---|---|---|---|---|
| Any resource created or accessed with the Outscale Cloud on eu-west-2 region - created by the Hunter | OTHER | Yes | - | |
| https://cockpit-eu-west-2.outscale.com/ | URL | Yes | ||
| https://directlink.eu-west-2.outscale.com | URL | Yes | ||
| https://eim.eu-west-2.outscale.com | URL | Yes | ||
| https://fcu.eu-west-2.outscale.com | URL | Yes | ||
| https://icu.eu-west-2.outscale.com | URL | Yes | ||
| https://lbu.eu-west-2.outscale.com | URL | Yes | ||
| https://osu.eu-west-2.outscale.com | URL | Yes |
Out-of-Scope Assets (11)
| Asset | Category | Bounty | |
|---|---|---|---|
| Any resource created or accessed with the Outscale Cloud, on all regions - except the ones created by the Hunter | OTHER | Yes | |
| Attack against Outscale offices (malware, backdoor, DoS, etc.) | OTHER | Yes | |
| Dataleaks or 3DS OUTSCALE-related vulnerabilities outside the scope of the IaaS Cloud Service. | OTHER | Yes | |
| Denial of service attacks | OTHER | Yes | |
| E-mail server configuration (DKIM/SPF/DMARC) | OTHER | Yes | |
| Issues in our DNS and NTP | OTHER | Yes | |
| Issues not leading to confidentiality, traceability or integrity problems. You can report it to support@outscale.com. | OTHER | Yes | |
| Other subdomains on outscale.com (wiki.outscale.net, fr.outscale.com, en.outscale.com... ) | OTHER | Yes | |
| Same behavior as Amazon Web Services | OTHER | Yes | |
| Social engineering of Outscale employees and contractors | OTHER | Yes | |
| Vulnerabilities on products or services other than Cockpit or APIs | OTHER | Yes |
Scope Changes (19)
Apr 16, 2026
| Change | Asset | Category | Scope | Time |
|---|---|---|---|---|
| Added | https://cockpit-eu-west-2.outscale.com/ | URL | In Scope | 18:33 |
| Added | https://fcu.eu-west-2.outscale.com | URL | In Scope | 18:33 |
| Added | https://lbu.eu-west-2.outscale.com | URL | In Scope | 18:33 |
| Added | https://osu.eu-west-2.outscale.com | URL | In Scope | 18:33 |
| Added | https://eim.eu-west-2.outscale.com | URL | In Scope | 18:33 |
| Added | https://icu.eu-west-2.outscale.com | URL | In Scope | 18:33 |
| Added | https://directlink.eu-west-2.outscale.com | URL | In Scope | 18:33 |
| Added | any resource created or accessed with the outscale cloud on eu-west-2 region - created by the hunter | OTHER | In Scope | 18:33 |
| Added | any resource created or accessed with the outscale cloud, on all regions - except the ones created by the hunter | OTHER | Out of Scope | 18:33 |
| Added | other subdomains on outscale.com (wiki.outscale.net, fr.outscale.com, en.outscale.com... ) | OTHER | Out of Scope | 18:33 |
| Added | social engineering of outscale employees and contractors | OTHER | Out of Scope | 18:33 |
| Added | attack against outscale offices (malware, backdoor, dos, etc.) | OTHER | Out of Scope | 18:33 |
| Added | denial of service attacks | OTHER | Out of Scope | 18:33 |
| Added | vulnerabilities on products or services other than cockpit or apis | OTHER | Out of Scope | 18:33 |
| Added | issues in our dns and ntp | OTHER | Out of Scope | 18:33 |
| Added | issues not leading to confidentiality, traceability or integrity problems. you can report it to support@outscale.com | OTHER | Out of Scope | 18:33 |
| Added | same behavior as amazon web services | OTHER | Out of Scope | 18:33 |
| Added | e-mail server configuration (dkim/spf/dmarc) | OTHER | Out of Scope | 18:33 |
| Added | dataleaks or 3ds outscale-related vulnerabilities outside the scope of the iaas cloud service | OTHER | Out of Scope | 18:33 |