User can steal refunded underlying tokens from `initRange` operation inside `RangeManager`

Rounding error in `WUSDA` can result in loss of user funds, especially when manipulated by an attacker

Removing a BribeFlywheel from a Gauge does not remove the reward asset from the rewards depo, making it impossible to add a new Flywheel with the same reward token

Lack of slippage protection can lead to significant loss of user funds

Incorrect price feed is used for `StableOracleWBTC`

Missing `onlyBalancer` modifier on `USSD::mintRebalancer` and `USSD::mintRebalancer` puts the entire system at risk

Chainlink's `latestRoundData` might return stale or incorrect results

Callers can forcefully commit loan borrower's collateral for arbitrary `bidId`s

Liquidations can be blocked for fee-on-transfer collateral tokens

[H-06] Double-entrypoint collateral token allows position owner to withdraw underlying collateral without repaying ZCHF

No slippage control when minting and redeeming FPS

Manipulation of total share amount might cause future depositors to lose their assets

function `restructureCapTable()` in Equity.sol not functioning as expected

Risk of silent overflow in reserves update

PrivatePool owner can steal all ERC20 and NFT from user via arbitrary execution

Malicious royalty recipient can steal excess eth from buy orders

`changeFeeQuote` will fail for low decimal ERC20 tokens

Flash loan fee is incorrect in Private Pool contract

A temporary issue shows in the staking functionality which leads to the users receiving less minted tokens.

An attacker can manipulate the preDepositvePrice to steal from other users.

First vault depositor can steal other's assets

Attacker can gain control of counterfactual wallet

Malicious manipulation of gas reserve can deny access to MIMOProxy

Delegate call in `Vault#_execute` can alter Vault's ownership