My colleague @0x686967 has identified a major security issue. Please contact me immediately if you have a security contact. As always, wouldn’t be here if they had an open line of contact for vulnerability disclosure.
Timeline of Disclosure
4/19/2021: Vulnerability Discovered
4/19/2021: Reached out through Twitter Pub Tweets/DM
4/20/2021: @0x686967 has made contact with their social media team. They said they will get him in contact with the security team.
5/2/2021: Oakley stated that the vulnerabilities would be fixed, and thanked @0x686967 – there’s nothing else to do at this time.