Missing Minimum Length Check in verifyBatchSignatures Allows Chain Halting Attack

Mean-Based Outlier Detection Vulnerability Allows Single Node to Sabotage Consensus

Incorrect BTC Delegation Reward Calculation Due to Using Current Stake Amount Instead of Historical Stake

Duplicate Order IDs Will Lead to Lost Orders/ Drain of Funds

OracleLess Protocol Reentrancy Vulnerability Can Lead to Fund Drain

DoS via Dust Order Spam in OracleLess Contract

Incorrect Price Validation in PythOracle

Arbitrary Price Input in CDS Redeem Function Allows Exchange Rate Manipulation

Missing Access Control on updateDownsideProtected() Enables Critical Pool Manipulation in CDS Protocol

Missing Replay Protection in ODOS Swap Authorization

LayerZero Message Delays Can Cause Protocol Issues Through Cross-Chain State Desynchronization

Unbounded Liquidation Iterations Can Lead to Withdrawal DoS

Front-Running Vulnerability in VVVVCTokenDistributor Claim Function

Loss of Vesting Rewards Upon Allocation Removal

Incorrect Fee Calculation Inflates Share Value

Claim Blocking Vulnerability in GammaRewarder Contract

Attacker will drain vault assets through token validation bypass

Missing LayerZero Ordered Execution Option For Orderly Chain Messages

Contract will charge inconsistent protocol fees affecting users and protocol revenue

Inability to Clawback in Incentive Contracts Leads to Locked Funds

Weird tokens will impact protocol functionality for users

Listings Contract will erroneously attempt to deposit fees and issue refunds when relisting a liquidated listing

Malicious user can exploit stale listings to gain undue refunds, impacting protocol funds and listing integrity

Users will suffer unexpected liquidations and unfair interest charges on Protected Listings

User can cancel or modify Dutch auctions, compromising market integrity and user trust

Liquidity Vault will accumulate inaccessible Pegged Assets (PA) affecting users funds

Lack of exchange rate consideration during lvRedeemRaWithCtDs will cause loss for users and protocol

Missing RA balance update for PSM during LV redemptions will cause incorrect RA balance

Protocol will lose access to repurchased RA tokens after issue expiry, impacting CT holders.

Incorrect value from emptyReservePartial may cause user redemption requests to be blocked in LV

User can manipulate initial RA/CT AMM price, causing significant loss to the protocol and other users

Malicious users will exploit NFT based reward distribution flaws, affecting legitimate users and the protocol

Malicious actors can execute sandwich attacks during market addition with existing funds

Frequent Updaters will Gain Disproportionate Rewards Affecting Passive Users