Permanent Interest Freeze via Exponential Decay Domain Violation

Undercharging Interest When Borrow Rate Decays to MIN_RATE

Redemptions Can Create a Collateral Deficit When a Free-Debt Borrower Is Underwater

`writeOff()` Can Zero Total Debt When the Written-Off Account Is the Last Borrower

Changing Entropy Provider During Active Drawing Causes Permanent Protocol Lock and Callback Failure

Changing Payout Calculator During Active Drawing Causes Loss of Unclaimed Winnings

`set_invocation_costs_config()` fails to authorize admin allowing anyone to set invocation costs

`twap()` under-charges for multi-period queries due to hardcoded `periods=1`

Systematic Overcharge in prices and x_prices: Fee Charged for Requested Records While Return is Capped at 20

Over‑Permissive Readiness in Continuous/Manual Markets Enables Premature Resolution

adjustMaker ignores recipient parameter, always settles to msg.sender

MakerFacet: collectFees resets JIT penalty age for non-compounding positions

Incorrect rootWidth computation in Tick.sol causes index underflow/wrap and tree corruption

FOK orders wrongly revert on dust residual amounts below lot size

LP Redelegation Uses Inaccurate Internal Tracker Amount, Leading to Potential Failures or Orphaned Funds

Critical Unauthorized ERC20 Token Draining Vulnerability in Payment Contract's payWithERC20 Function

An attacker will dilute rewards for legitimate stakers

[H-1] Missing totalSupply Reduction in burnFrom Allows Supply Manipulation (ERC20 Violation)

RAACNFT mint function receives funds to address(this) but has no way of withdrawing them

Workingsupply would always be overwritten in boostcontroller.sol impacting reward calculations