Legal
These disclosures are made in accordance with the requirements set out under the UK Product Security and Telecommunications Infrastructure (Security Requirements for Relevant Connectable Products) Regulations 2023 and the Cyber Security (Security Standards for Smart Devices) Rules 2025, and may be updated as new legislation become applicable.
Information on minimum security update periods
For details on the minimum security update period for your product please refer to the table below
Product Description (Model Number) | Minimum Security Update Period* |
PlayStation 5 (CFI-7121, CFI-7102, CFI-2116, CFI-2102, CFI-7021, CFI-7002, CFI-2016, CFI-2002, CFI-1216A, CFI-1202A, CFI-1216B, CFI-1202B, CFI-1116A, CFI-1102A, CFI-1116B, CFI-1102B, CFI-1016A, CFI-1002A, CFI-1016B, CFI-1002B) | April 2027 |
DualSense (CFI-ZCT2W, CFI-ZCT1W) | April 2027 |
DualSense Edge (CFI-ZCP1) | April 2027 |
PlayStation 4 (CUH-2216A, CUH-2202A, CUH-2216B, CUH-2202B) | April 2027 |
PlayStation Portal Remote Player (CFI-Y1016) | April 2027 |
Pulse Elite Wireless Headset (CFI-ZWH2) | April 2027 |
Pulse Explore Wireless Earbuds (CFI-ZWE1) | April 2027 |
*The defined support period is the minimum period PlayStation will provide security updates for the listed products. This period may be updated from time to time and updates will be posted on this webpage. Note that this information only covers security updates and does not guarantee the availability of PlayStation's online services.
Firmware and security updates for PC and Mac users
To check for availability of required firmware (including security) updates:
Users with PlayStation Pulse Elite Wireless Headset, or Pulse Explore Wireless Earbuds please connect your device to the PlayStation Link PC Driver.
Users with PlayStation DualSense Wireless Controller, or DualSense Edge Wireless Controller please download and launch the PlayStation Accessories App.
Information on how to report security issues
Sony Interactive Entertainment supports both the PlayStation bug bounty program for certain PlayStation products and the Sony Global security program for all other Sony assets not covered by the PlayStation bug bounty program. Our global information security team is dedicated to protecting our assets, services, products, and customer information. We value the research community's contributions to our security and welcome collaboration.
We accept reports of vulnerabilities that could compromise the integrity, availability, or confidentiality of our products, services, or IT infrastructure, provided they meet our submission guidelines (find out more in the links below).
PlayStation Products
To find out which products are included in the PlayStation bug bounty program, please visit https://hackerone.com/playstation/policy_scopes.
From here you can submit a vulnerability report directly using the button at the top of the page, or by following this link: https://hackerone.com/playstation.
Sony Products
For all other Sony assets, please report it through Secure@Sony: https://secure.sony.com/ which includes a tab on submitting a vulnerability report.
Timelines*
You will receive acknowledgement of a reported security issue within 5 business days and status updates will be provided until the resolution of a reported security issue within 30 business days**.
*Please be aware that if you are reporting a vulnerability concerning third-party games playable on PlayStation consoles, the report will be passed over to the third party concerned for a resolution.
**These timelines are subject to change from time to time and may be impacted by incident-specific considerations.
Please see a link to our UK Declaration of Conformity / Statement of Compliance page: https://www.sony.co.uk/electronics/gb-compliance
Last Updated: November 2025
Enter your date of birth.
LIVE_BLOG_FEED_AGE_VERIFY
{OVERLINE}
{PARAGRAPH}
{FEATURE_DESC}
