Buffer Silently Locks Staked HYPE in Contract Without Using Them For Withdrawals Or Providing A Way To Be Pulled Out Or Moved To L1

Mishandling of receiving HYPE in the StakingManager , lead to user can't confirm withdrawal and inflate the exchange ratio

Inconsistent State Restoration in `cancelWithdrawal` Function

Unauthorized Reallocation in `NudgeCampaign::handleReallocation` and Reward Disruption Vulnerability in `NudgeCampaign::invalidateParticipations`

Unauthorized ERC20 Transfers in `Payment::payWithERC20` can lead to loss of funds

Lack of Access Control in `SymmStaking::notifyRewardAmount` Allows DoS via Reward Period Extension

The `Leverager::_getTokenIn` does not update the `path` after skip token causing indefinite loop and OOG

Multiple Delegation by Double Spending Boosts and Lack of Delegation Tracking in BoostController Contract

RAACNFT mint function receives funds to address(this) but has no way of withdrawing them

Users Can Overwrite Existing Locks in veRAACToken Resulting in Permanent Loss of Funds

Reward manipulation vulnerability in StabilityPool

Incorrect Reward Claim Logic in FeeCollector::claimRewards Causes Denial of Service

RToken's transfer function lead to loss of funds due to incorrect math

Users can borrow more assets than they have deposited as collateral

NFTs Get Permanently Locked in Stability Pool After Liquidation

RToken.transferFrom() Does Not Scale User Balances Due to Stale Liquidity Index

Workingsupply would always be overwritten in boostcontroller.sol impacting reward calculations

Cordinated group of attacker can artificially lower quorum threshold during active proposals forcing malicious proposals to pass without true majority support.

Incorrect boost calculation in `BoostController#_calculateBoost()` can be exploited to gain an unfair advantage in reward distribution

Flawed Boost Multiplier Calculation Always Yields Maximum Boost

Limited veRaac Token Supply Triggers DoS, Hampering Proper Governance Participation.

`FeeCollector::updateFeeType` wrong fee share validation leads to impossible update for some fee types

Insufficient ETH Forwarding in Governance Execution Mechanism Causes Proposal Failures

The calculation of `totalAssets()` could be wrong if `operatorFeeAmount` > 0, this can cause potential loss for the new depositors