User can initialize distribution record multiple times to extend his voting power.

Slightly increasing the vote factor can result to beneficiaries not able to claim their tokens.

Logic error occurs when executing a claim, if the beneficiary was adjusted before.

SetToken can't be unlocked early.

Malicious user is able to drain the FixedStrikeOptionTeller contract.

Last epoch claimed for the user isn't updated on staking, which can permanently stuck the user from claiming rewards.

Wrong accounting of the storage balances results for the protocol to be in debt even when the bad debt is repaid.

Stuck funds in the vault duo to wrong logic applied when adding margin to a position.

Order's minimum amount out is calculated wrongly when partially closing a position.

Wrong accounting happens when opening a partially filled position, which leads to permanent loss of funds.

Malicious Party A can prevent Party B from emergency closing a position on a market price.

Expired signature can stuck all Party positions in a liquidation state.

Malicious liquidator can get the liquidation fee without finalizing the full liquidation of Party A.

Malicious Party B is able to permanently prevent force closing a position by partially closing dust amounts.