`OptionTokenV4.exerciseLP`'s `addLiquidity` lack of slippage can be abused to make victims exercise for a lower liquidity than intended

`DepositWithLock` done via `OptionToken` can be abused to permanently lock a user position

`Pool` changes cause reverts on Small Swaps and on Fee set to 0

The amount of `xezETH` in circulation will not represent the amount of `ezETH` tokens 1:1

Withdrawals logic allows MEV exploits of TVL changes and zero-slippage zero-fee swaps

stETH/ETH Feed being used opens up to 2 way deposit<->withdrawal arbitrage

Attacker can make 0 value deposit() calls to deny user from redeeming or withdrawing collateral

Value of kerosene can be manipulated to force liquidate users

No incentive to liquidate when CR <= 1 as asset received < dyad burned

l2BlockNumber()` can be used to prevent creating new Games

`tx.origin` breaks ability to have someone else broadcast TXs and may cause loss of bonds

Exchange Rate Change in Case of Lossy Strategy will cause the Vault to Undercollateralized for generic ERC4626 Yield Vaults

Liquidation transactions can potentially fail for all markets

Reentrancy in `USDO.flashLoan()`, enabling an attacker to borrow unlimited USDO exceeding the max borrow limit

`TricryptoLPStrategy.compoundAmount` always returns 0 because it's using staticall vs call

`LidoEthStrategy._currentBalance` is subject to price manipulation, allows overborrowing and liquidations

Usage of `BalancerStrategy.updateCache` will cause single sided Loss, discount to Depositor and to OverBorrow from Singularity

BalancerStrategy `_withdraw` uses `BPT_IN_FOR_EXACT_TOKENS_OUT` which can be attack to cause loss to all depositors

Seer.get uses a view fetcher, breaking the intended use

`emitForWeek` will lose `emissionForWeek` if one week is skipped

`TapiocaOptionLiquidityProvision` causes Loss of Yield when depositing and withdrawing from Singularity - should use shares to track balances

`TapiocaOptionLiquidityProvision` stores amount which cause Socialization of Loss when unlocking

Burning FlashFee breaks a core protocol invariant

Using `setBigBangEthMarketDebtRate` or `setBigBangConfig` cause incorrect interest calculation due to retroactively applying the interest rate

MEV Attack on `stkAAVE` causes the AaveStrategy to give away all of the Yield

CompoundStrategy `_currentBalance` uses `exchangeRateStored` which is leaks value

a4185aaf2a0a953dd8ea2e7f62a58087c4cd5680bfbe8c3a749efef847af3c3b - Sent Privately

Convex `BaseRewardPool` allows Claim on Behalf which causes delta to break - Loss of all Rewards

Curve Strategy Yield can be Lost by Griefing due to Delta Balance Check

LidEthStrategys Hardcoded 2.5% slippage allows stealing all tokens above $2MLN

LidoETHStrategy buys stETH at 1-1 instead of buying it from the Pool at Discount

In case of Loss to the Yearn Vault, the Contract will stop working until the loss is repaid

`YearnStrategy` is ignoring the `lockedProfits`, giving away all of the Yield to laggard depositors

Single UniswapV3Swapper using a single fee makes it highly likely to be suboptimal

`getDebtRate()` is view and reads `ethMarket.getTotalDebt` allowing for manipulations

A portion of stargate token rewards earned by StargateStrategy are permanently locked in the contract

`_getDiscountedPaymentAmount` doesn't work for tokens with more than 18 decimals

`safeMint` is not `safeMint` - broken EIP-721 spec

Will not work for Non Standard ERC-20 such as USDT

`changeMaxGenerationId` allows to mint tokens from older generations retroactively

DepositStableCoinToDealer and GeneralRepay approval farming allows to steal all approved tokens

You can liquidate the insurance, burning all bad debt

Max Deposits per account can be sidestepped

`uniswapPriceAdaptor` may check quotes on low liquidity pairs as not all tokens are directly liquid

Last Trove may be prevented from redeeming

If the strategy incurs a loss the Active Pool will stop working until the shortfall is paid out entirely

Denial of liquidations and Redemptions by borrowing all reserves from AAVE

`upgradeProtocol` can create Peg Risk via Oracle Price Arbitrage

`setLatestAdlBlock` may set the wrong block number

Oracle is not checking for sequencer uptime

Optimism Portal can run out of gas due to incorrect overhead estimation

`PreviewRedeem` may under-price the value of the asset

Risk with Liquidation - Because of partnership requirement, caller may be unable to redeem during liquidation making it less likely for them to be willing to perform the liquidation

Should Accrue Before Change, Loss of Rewards in case of change of settings

H-01 wstETH-ETH Curve LP Token Price can be manipulated to Cause Unexpected Liquidations

H-01 - All Fees can be stolen by using them as input amounts - (Works on any exchange)

M-01 Feed latest answer not validated (may be old, may be down)

M-02 wstETH Feed Doesn't check for Freshness

M-03 YTokenOracle doesn't account for losses when pricing the yToken

M-04 Chainlink Feed Price is not validated

M-05 Yearn `withdraw(uint)` selector may backfire

M-01 Account may not be able to sell a token if using UniV3

Voted votes cannot change after the user are issued with new votes or the user's old votes are revoked during voting

Heart will stop if all rewards are swept

No Cap on Amount of VOTES means the `voter_admin` can get any proposal to pass

Builder can call `Community.escrow` again to reduce debt further using same signatures

Task Functionality completely sidestepped via `autoWithdraw`

ORACLE DATA FEED CAN BE OUTDATED YET USED ANYWAYS WHICH WILL IMPACT ON PAYMENT LOGIC

Unhandled chainlink revert would lock all price oracle access

`fee` can change without the consent of users

Malicious Token Contracts May Lead To Locking Orders

Staking `preSign` could use some basic validations

Able to mint any amount of PT

Swivel lend method doesn't pull protocol fee from user

Leak of Value in `yield` function, slippage check is not effective

Sandwich attacks are possible as there is no slippage control option in Marketplace and in Lender yield swaps

Centralisation Risk: Admin Can Change Important Variables To Steal Funds

Admin Privilege in minting to arbitrary address allows operator to dilute tokens

Wrong slippage check

Admin Privilege - Owner can rug via `ThecosomataETH.withdraw`

[WP-H0] `DEFAULT_ADMIN_ROLE` of `BribeVault` can steal tokens from users' wallets

Repeated Calls to Shelter.withdraw Can Drain All Funds in Shelter

USDMPegRecovery Risk of fund locked, due to discrepancy between curveLP token value against internal contract math

StakingRewards.recoverERC20 allows owner to rug the `rewardsToken`

[ConcurRewardPool] Possible reentrancy when claiming rewards

Unsafe handling of underlying tokens

onlyOwnerOrAssetManager can swap Yield Source in SwappableYieldSource at any time, immediately rugging all funds from old yield source

Old yield source still has infinite approval

_deposit resetting user rewards can be used to grief them and make them loose rewards via `depositForMember `

randomIndex is not truly random - possibility of predictably minting a specific token Id