Report #32131

Lack of Access Control in Facet Replacement Function Allows Unauthorized Fund Drainage.

Immunefi Response

We have reviewed your submission, but unfortunately, we are closing the report for the following reasons:

• The submission contains the output of an automated scanner without demonstrating that it is a valid issue.
• The submission lacks the required information regarding the vulnerability's impact on the reported asset.
• The external diamondCut function does already enforce the caller is the owner with LibDiamond.enforceIsContractOwner();. https://etherscan.io/address/0xC1E088fC1323b20BCBee9bd1B9fC9546db5624C5#code#F3#L27

Please note that the project will receive a report of the closed submission and may choose to re-open it, but they are not obligated to do so.