Missing Interest Accrual When Updating Cross‐Chain Borrow Principal

Use of transfer Instead of OpenZeppelin’s safeTransfer for ERC-20 Transfers

Double Counting Interest in Collateral Check Due to Redundant Index Scaling

Missing addUserSuppliedAsset Call for Liquidator After Seizing Collateral

Incorrect Tax Calculation in removeValueSingle leads to no tax

Missing selectors from `BaseAdminFacet` for diamond cuts

Users Who Queue Withdrawal Before A Slashing Event Disadvantage Users Who Queue After And Eventually Leads To Loss Of Funds For Them

Incorrect Balance Check in Validator Redelegation Process May Block Legitimate Rebalancing Operations

Natural Logarithm Function Silently Accepts Invalid Non-Positive Inputs

feeRecipient Address not initiated or set in Leverager.sol

`GaugeController` does not send funds to FeeCollector disrupting fees distribution and causing loss of funds

Incorrect Reward Claim Logic in FeeCollector::claimRewards Causes Denial of Service

Boost Miscalculation Leads to Excess Distribution

Attackers can double voting power and veToken amount by locking and increasing

Liquidation Cannot Be Closed Even With Healthy Position Due To Strict Debt Check

Using balanceOf Instead of Voting Power

There is no logic checking for RAACNFT price staleness before minting it

Flawed Boost Multiplier Calculation Always Yields Maximum Boost

Inconsistent Fee Collector Address Validation in RAACMinter: Denial of Service for Disabling Fee Collection

`DebtToken::burn`'s Return Values are wrong

Adversary can win proposals with voting power as low as 4%

quantAMMSwapFeeTake used for both getQuantAMMSwapFeeTake and getQuantAMMUpliftFeeTake.