Unrestricted claiming of fees due to missing balance updates in `FeeSplitter`

Unauthorized Access to setCurves Function

Selling will be bricked if all other tokens are withdrawn to ERC20 token

onBalanceChange causes previously unclaimed rewards to be cleared

Withdrawing with amount = 0 will forcefully set name and symbol to default and disable some functions for token subject

Sandwich attack to steal all ERC-20 tokens in the Fees contract

Forcing a borrower to pay a huge debt via the giveLoan()

Lender can Sandwich a borrower to seize his collateral

The `borrow` and `refinance` functions can be front-run by the pool lender to set high interest rates

Single-step process for critical ownership transfer is risky

Lender contract can be drained by re-entrancy in `seizeLoan`

Fixed fee level is used when swap tokens on Uniswap

Theft of collateral tokens with fewer than 18 decimals

Liquidation Is Prevented Due To Strict Implementation of Liqudation Bonus

Too many DSC tokens can get minted for fee-on-transfer tokens.

`Vault.mintYieldFee` FUNCTION CAN BE CALLED BY ANYONE TO MINT `Vault Shares` TO ANY RECIPIENT ADDRESS

First depositor can steal funds from subsequent depositors

Reward token payouts can be sandwiched and user rewards stolen

Too tight slippage on stablecoin swaps can lead to DoS

Vault rebalancing can be frontrun to steal yield

Liquidity pool funds can be stolen

Deposit limit can be circumvented

DoS during the migration process by calling L2 message passer directly

Stealing fund by applying reentrancy attack on `removeCollateral`, `startLiquidationAuction`, and `purchaseLiquidationAuctionNFT`

Missing deadline checks allow pending transactions to be maliciously executed

Liquidity providers may lose funds when adding liquidity

Missing deadline checks allow pending transactions to be maliciously executed

Riskless trades due to delay check

Certain fee configuration enables vaults to be drained