BlockSec posted on Permission check in DebtManager contract leverage function. Then, in an untrusted external call, the attacker reenters the crossDeleverage function in the DebtManager contract and steals collateral from the _msgSender type.
Disclaimer: Includes third-party opinions. No financial advice. May include sponsored content.See T&Cs.