Under Armour AppSec

Under Armour’s vision is to inspire you with performance solutions you never knew you needed and can’t imagine living without.

  • $125 – $2,500 per vulnerability
  • Partial safe harbor
Submit report

Scope updates on the Under Armour bounty program

We wanted to reach out to you about a scope change on UNDER ARMOUR.

Due to app sunsetting and business divestitures, Under Armour has found it necessary to update the scope; specifically the following targets have been adjusted:

3 apps have been removed from the scope - (Record, Endomondo, & MyFitnessPal). This includes web sites, mobile apps, and APIs.

Note: any valid findings against the in-scope targets prior to this adjustment will still be rewarded as per the program brief/guidelines at the time of the submission. To Fix submissions were cleaned out this week and submissions were marked "Resolved."

Please review the brief thoroughly to be sure you are still in-scope as you continue to test.

If you have any questions, please first reach out to support@bugcrowd.com.

Bugcrowd-JF
Bugcrowd-JF