What? I'm a Jamf customer, we did receive the report.
Soooo... the vulnerability was discovered, then patched almost immediately - then Jamf allowed customer about 72 hours to upgrade their server before telling the world there was a way to hack into anyones server not upgraded to a patched build. This was a responsible and appropriate move. Jamf released the vulnerability data to customers yesterday. It's common practice to allow people ample time to upgrade prior to releasing the how-to