Incorrect Token Deduction in Withdrawal (Logical Error)

`GaugeController` does not send funds to FeeCollector disrupting fees distribution and causing loss of funds

Users can borrow more assets than they have deposited as collateral

RToken is Not Interest Bearing Due to Broken Liquidity Index Calculation

Gauge rewards are not transferred to gauge when distributeRewards() is called

Voting Power Snapshot Missing

Missing Vote Frequency Control in GaugeController

veRaac Token Constraint MAX_TOTAL_SUPPLY Can Be Bypassed. Vulnerability Disrupts Protocol Functionality and Undermines Governance Quorum.

There is no logic checking for RAACNFT price staleness before minting it

Workingsupply would always be overwritten in boostcontroller.sol impacting reward calculations

Emergency revoke in RAACReleaseOrchestrator will freeze revoked RAAC tokens in orchestrator

`veRAACToken::_updateBoostState` function sets individual user voting power instead of system-wide totals

Token Accounting Mismatch Between tick() and mintRewards() in RAACMinter

Incorrect Period Transition Logic in Reward Distribution

Delegated Boost Persists Even If veRAAC Is Withdrawn/Reduced

[L-1] Inaccurate boost calculations in `veRAACToken` due to wrong input parameter

Incorrect boost calculation in `BoostController#_calculateBoost()` can be exploited to gain an unfair advantage in reward distribution

Missing Predecessor Check in `executeEmergencyAction()` function

Limited veRaac Token Supply Triggers DoS, Hampering Proper Governance Participation.

Emergency Timelock Bypass: No Enforced 1-Day Delay for Emergency Actions

Lack of enforcement of the `MAX_TOTAL_LOCKED_AMOUNT`

Boost Delegation Allows Invalid Recipients on BoostController

Incorrect Timestamp Tracking in RAACHousePrice contract

`emergencyUnlockEnabled` Is Never Used, Rendering “Emergency Unlock” Ineffective

Accumulated ETH in the LamboVEthRouter will be irretrievable