[tgragnato]

The bounty was specifically targeting Tor Browser on Tails and/or Windows 10. This vulnerability affects the security settings at high, so the payouts were 185k for cross platform RCE, and 250k for cross platform RCE+LPE.

> We've launched back in December 2017 a specific and time-limited bug bounty for Tor Browser and we've received and acquired, during and after the bounty, many Tor exploits meeting our requirements

If we have to take their words for granted, "many exploits" probably means they have a LPE too. And when you escalate, you are able to bypass both SOCKS5 and Tails' firewall.