China’s Cyberspace Administration, Ministry of Public Security, and Ministry of Industry and Information Technology introduced the Regulations on the Management of Network Product Security Vulnerabilities (RMSV) in July 2021, mandating that software vulnerabilities exploitable flaws in code be reported to the MIIT within 48 hours of discovery.
This policy prohibits researchers from publishing vulnerability details, proof-of-concept exploits, or exaggerated severity assessments without coordinating patches with product owners and authorities.
https://gbhackers.com/chinese-hackers-e ... abilities/