# ZeroLend
## Reports by Severity
[Critical](#critical) | [High](#high) | [Medium](#medium) | [Insight](#insight)
Critical
* [28912 - \[SC - Critical\] Attackers can control the vote result and ampli...](https://reports.immunefi.com/zerolend/28912-sc-critical-attackers-can-control-the-vote-result-and-ampli...)
* [29031 - \[SC - Critical\] VestedZeroNFT tokens can be directly stolen thr...](https://reports.immunefi.com/zerolend/29031-sc-critical-vestedzeronft-tokens-can-be-directly-stolen-thr...)
* [29062 - \[SC - Critical\] Attacker can steal locked balance of staked nft...](https://reports.immunefi.com/zerolend/29062-sc-critical-attacker-can-steal-locked-balance-of-staked-nft...)
* [29103 - \[SC - Critical\] Omnichain Stakers can permanently lose access t...](https://reports.immunefi.com/zerolend/29103-sc-critical-omnichain-stakers-can-permanently-lose-access-t...)
* [29135 - \[SC - Critical\] OmnichainStakingsolunstakeLP and OmnichainStaki...](https://reports.immunefi.com/zerolend/29135-sc-critical-omnichainstakingsolunstakelp-and-omnichainstaki...)
* [29204 - \[SC - Critical\] Direct theft of Users VestedZeroNFT by using sp...](https://reports.immunefi.com/zerolend/29204-sc-critical-direct-theft-of-users-vestedzeronft-by-using-sp...)
* [29211 - \[SC - Critical\] Voting manipulation cause by the possibility to...](https://reports.immunefi.com/zerolend/29211-sc-critical-voting-manipulation-cause-by-the-possibility-to...)
* [29288 - \[SC - Critical\] all NFTs can be stolen by calling VestedZeroNFT...](https://reports.immunefi.com/zerolend/29288-sc-critical-all-nfts-can-be-stolen-by-calling-vestedzeronft...)
High
* [28910 - \[SC - High\] Bool check wrong in registerGauge](https://reports.immunefi.com/zerolend/28910-sc-high-bool-check-wrong-in-registergauge)
* [28955 - \[SC - High\] Malicious user can transfer all unclaimed rewar...](https://reports.immunefi.com/zerolend/28955-sc-high-malicious-user-can-transfer-all-unclaimed-rewar...)
* [28988 - \[SC - High\] Mechanism for distributing extra reward tokens ...](https://reports.immunefi.com/zerolend/28988-sc-high-mechanism-for-distributing-extra-reward-tokens-...)
* [28992 - \[SC - High\] Permanent freezing of additional reward tokens](https://reports.immunefi.com/zerolend/28992-sc-high-permanent-freezing-of-additional-reward-tokens)
* [29012 - \[SC - High\] Votes manipulation in PoolVoter](https://reports.immunefi.com/zerolend/29012-sc-high-votes-manipulation-in-poolvoter)
* [29019 - \[SC - High\] The ZeroLendToken contract in the Governance mo...](https://reports.immunefi.com/zerolend/29019-sc-high-the-zerolendtoken-contract-in-the-governance-mo...)
* [29026 - \[SC - High\] Hackers can steal the unclaimed yield to get th...](https://reports.immunefi.com/zerolend/29026-sc-high-hackers-can-steal-the-unclaimed-yield-to-get-th...)
* [29078 - \[SC - High\] Theft of unclaimed yield due to the wrong calcu...](https://reports.immunefi.com/zerolend/29078-sc-high-theft-of-unclaimed-yield-due-to-the-wrong-calcu...)
* [29095 - \[SC - High\] The lockers supply can be arbitrarily inflated ...](https://reports.immunefi.com/zerolend/29095-sc-high-the-lockers-supply-can-be-arbitrarily-inflated-...)
* [29101 - \[SC - High\] Staking in BaseLocker is broken](https://reports.immunefi.com/zerolend/29101-sc-high-staking-in-baselocker-is-broken)
* [29120 - \[SC - High\] Bug in reward distribution logic leads to theft...](https://reports.immunefi.com/zerolend/29120-sc-high-bug-in-reward-distribution-logic-leads-to-theft...)
* [29121 - \[SC - High\] Any rewards sent to the PoolVoter will be undis...](https://reports.immunefi.com/zerolend/29121-sc-high-any-rewards-sent-to-the-poolvoter-will-be-undis...)
* [29122 - \[SC - High\] All reward tokens can be stolen by an attacker ...](https://reports.immunefi.com/zerolend/29122-sc-high-all-reward-tokens-can-be-stolen-by-an-attacker-...)
* [29137 - \[SC - High\] ZeroLend token is not behaving properly while c...](https://reports.immunefi.com/zerolend/29137-sc-high-zerolend-token-is-not-behaving-properly-while-c...)
* [29145 - \[SC - High\] zeroLendToken is bricked to use for whitelisted...](https://reports.immunefi.com/zerolend/29145-sc-high-zerolendtoken-is-bricked-to-use-for-whitelisted...)
* [29181 - \[SC - High\] Tautology in PoolVoterregisterGauge makes it im...](https://reports.immunefi.com/zerolend/29181-sc-high-tautology-in-poolvoterregistergauge-makes-it-im...)
* [29189 - \[SC - High\] ZeroLendToken doesnt allow whitelisted users to...](https://reports.immunefi.com/zerolend/29189-sc-high-zerolendtoken-doesnt-allow-whitelisted-users-to...)
* [29213 - \[SC - High\] The function always revert if \_stakeNFT True d...](https://reports.immunefi.com/zerolend/29213-sc-high-the-function-always-revert-if-_stakenft-true-d...)
* [29267 - \[SC - High\] Wrong implementation causing some functions in ...](https://reports.immunefi.com/zerolend/29267-sc-high-wrong-implementation-causing-some-functions-in-...)
* [29270 - \[SC - High\] The main functionality of the contract EarlyZER...](https://reports.immunefi.com/zerolend/29270-sc-high-the-main-functionality-of-the-contract-earlyzer...)
Medium
* [28875 - \[SC - Medium\] Unauthorized minting of vested NFTs](https://reports.immunefi.com/zerolend/28875-sc-medium-unauthorized-minting-of-vested-nfts)
* [28885 - \[SC - Medium\] Lack of check for Lockend in merge LockerToken ...](https://reports.immunefi.com/zerolend/28885-sc-medium-lack-of-check-for-lockend-in-merge-lockertoken-...)
* [28892 - \[SC - Medium\] ZeroLockermerge can make a voting lock last lon...](https://reports.immunefi.com/zerolend/28892-sc-medium-zerolockermerge-can-make-a-voting-lock-last-lon...)
* [28938 - \[SC - Medium\] Attacker can invalidate users supplyWithPermit ...](https://reports.immunefi.com/zerolend/28938-sc-medium-attacker-can-invalidate-users-supplywithpermit-...)
* [28943 - \[SC - Medium\] DoS when user want to supply repay asset using...](https://reports.immunefi.com/zerolend/28943-sc-medium-dos-when-user-want-to-supply-repay-asset-using...)
* [28970 - \[SC - Medium\] Attacker can grief a user by making his supplyW...](https://reports.immunefi.com/zerolend/28970-sc-medium-attacker-can-grief-a-user-by-making-his-supplyw...)
* [28987 - \[SC - Medium\] Manipulation of governance is possible by minti...](https://reports.immunefi.com/zerolend/28987-sc-medium-manipulation-of-governance-is-possible-by-minti...)
* [29052 - \[SC - Medium\] Pool funds could be locked due to Division by zero](https://reports.immunefi.com/zerolend/29052-sc-medium-pool-funds-could-be-locked-due-to-division-by-zero)
* [29059 - \[SC - Medium\] Race condition in StakingBonus will result in s...](https://reports.immunefi.com/zerolend/29059-sc-medium-race-condition-in-stakingbonus-will-result-in-s...)
* [29068 - \[SC - Medium\] AaveOracle contract does not verify price stale...](https://reports.immunefi.com/zerolend/29068-sc-medium-aaveoracle-contract-does-not-verify-price-stale...)
* [29069 - \[SC - Medium\] Ability to deny users from repaying and supplyi...](https://reports.immunefi.com/zerolend/29069-sc-medium-ability-to-deny-users-from-repaying-and-supplyi...)
* [29123 - \[SC - Medium\] Griefing attack for VestedZeroNFT](https://reports.immunefi.com/zerolend/29123-sc-medium-griefing-attack-for-vestedzeronft)
* [29130 - \[SC - Medium\] Unlimited Minting of VestedZeroNFT](https://reports.immunefi.com/zerolend/29130-sc-medium-unlimited-minting-of-vestedzeronft)
* [29139 - \[SC - Medium\] Griefing attack to cause users to suffer penalt...](https://reports.immunefi.com/zerolend/29139-sc-medium-griefing-attack-to-cause-users-to-suffer-penalt...)
* [29170 - \[SC - Medium\] DoS by front-runnable externall call](https://reports.immunefi.com/zerolend/29170-sc-medium-dos-by-front-runnable-externall-call)
* [29198 - \[SC - Medium\] Griefing attack to cause the rewards of a user ...](https://reports.immunefi.com/zerolend/29198-sc-medium-griefing-attack-to-cause-the-rewards-of-a-user-...)
* [29286 - \[SC - Medium\] MultiSigWalletremoveOwner - L The bug allows th...](https://reports.immunefi.com/zerolend/29286-sc-medium-multisigwalletremoveowner-l-the-bug-allows-th...)
Insight
* [29047 - \[SC - Insight\] Reward is lost when totalSupply](https://reports.immunefi.com/zerolend/29047-sc-insight-reward-is-lost-when-totalsupply)
* [29149 - \[SC - Insight\] DoS in Zero Registry configuration updation](https://reports.immunefi.com/zerolend/29149-sc-insight-dos-in-zero-registry-configuration-updation)
* [29175 - \[SC - Insight\] Granting DEFAULT\_ADMIN\_ROLE to the deployer in ...](https://reports.immunefi.com/zerolend/29175-sc-insight-granting-default_admin_role-to-the-deployer-in-...)
* [29186 - \[SC - Insight\] ValidationLogicvalidateBorrow - L-L Incorrect i...](https://reports.immunefi.com/zerolend/29186-sc-insight-validationlogicvalidateborrow-l-l-incorrect-i...)
* [29188 - \[SC - Insight\] StakingBonuscalculateBonus wrongly utilizes BPS](https://reports.immunefi.com/zerolend/29188-sc-insight-stakingbonuscalculatebonus-wrongly-utilizes-bps)
* [29190 - \[SC - Insight\] Permanent freezing of up to wei of yield each ...](https://reports.immunefi.com/zerolend/29190-sc-insight-permanent-freezing-of-up-to-wei-of-yield-each-...)
* [29225 - \[SC - Insight\] EarlyZEROVesting is having a rounding issue and...](https://reports.immunefi.com/zerolend/29225-sc-insight-earlyzerovesting-is-having-a-rounding-issue-and...)
* [29244 - \[SC - Insight\] Using permit inside the function can lead to Do...](https://reports.immunefi.com/zerolend/29244-sc-insight-using-permit-inside-the-function-can-lead-to-do...)
* [29249 - \[SC - Insight\] Using permit inside the function can lead to Do...](https://reports.immunefi.com/zerolend/29249-sc-insight-using-permit-inside-the-function-can-lead-to-do...)
* [29262 - \[SC - Insight\] Some users can get more rewards than others whi...](https://reports.immunefi.com/zerolend/29262-sc-insight-some-users-can-get-more-rewards-than-others-whi...)
* [29322 - \[SC - Insight\] Use safeTransfer instead of transfer](https://reports.immunefi.com/zerolend/29322-sc-insight-use-safetransfer-instead-of-transfer)
* [29328 - \[SC - Insight\] zkSync ACLManager EOA as EMERGENCY\_ADMIN](https://reports.immunefi.com/zerolend/29328-sc-insight-zksync-aclmanager-eoa-as-emergency_admin)
* [29329 - \[SC - Insight\] Manta ACLManager EOA as EMERGENCY\_ADMIN](https://reports.immunefi.com/zerolend/29329-sc-insight-manta-aclmanager-eoa-as-emergency_admin)
* [29331 - \[SC - Insight\] Manta ACLManager EOA as RISK\_ADMIN](https://reports.immunefi.com/zerolend/29331-sc-insight-manta-aclmanager-eoa-as-risk_admin)
* [29332 - \[SC - Insight\] Manta ReservesSetupHelper EOA as owner](https://reports.immunefi.com/zerolend/29332-sc-insight-manta-reservessetuphelper-eoa-as-owner)
* [29342 - \[SC - Insight\] Lack of chainID validation allows reuse of sign...](https://reports.immunefi.com/zerolend/29342-sc-insight-lack-of-chainid-validation-allows-reuse-of-sign...)
* [29344 - \[SC - Insight\] Price assets deposited manipulation](https://reports.immunefi.com/zerolend/29344-sc-insight-price-assets-deposited-manipulation)
## Reports by Type
[Smart Contract](#smart-contract)
Smart Contract
* [28875 - \[SC - Medium\] Unauthorized minting of vested NFTs](https://reports.immunefi.com/zerolend/28875-sc-medium-unauthorized-minting-of-vested-nfts)
* [28885 - \[SC - Medium\] Lack of check for Lockend in merge LockerToken ...](https://reports.immunefi.com/zerolend/28885-sc-medium-lack-of-check-for-lockend-in-merge-lockertoken-...)
* [28892 - \[SC - Medium\] ZeroLockermerge can make a voting lock last lon...](https://reports.immunefi.com/zerolend/28892-sc-medium-zerolockermerge-can-make-a-voting-lock-last-lon...)
* [28910 - \[SC - High\] Bool check wrong in registerGauge](https://reports.immunefi.com/zerolend/28910-sc-high-bool-check-wrong-in-registergauge)
* [28912 - \[SC - Critical\] Attackers can control the vote result and ampli...](https://reports.immunefi.com/zerolend/28912-sc-critical-attackers-can-control-the-vote-result-and-ampli...)
* [28938 - \[SC - Medium\] Attacker can invalidate users supplyWithPermit ...](https://reports.immunefi.com/zerolend/28938-sc-medium-attacker-can-invalidate-users-supplywithpermit-...)
* [28943 - \[SC - Medium\] DoS when user want to supply repay asset using...](https://reports.immunefi.com/zerolend/28943-sc-medium-dos-when-user-want-to-supply-repay-asset-using...)
* [28955 - \[SC - High\] Malicious user can transfer all unclaimed rewar...](https://reports.immunefi.com/zerolend/28955-sc-high-malicious-user-can-transfer-all-unclaimed-rewar...)
* [28970 - \[SC - Medium\] Attacker can grief a user by making his supplyW...](https://reports.immunefi.com/zerolend/28970-sc-medium-attacker-can-grief-a-user-by-making-his-supplyw...)
* [28987 - \[SC - Medium\] Manipulation of governance is possible by minti...](https://reports.immunefi.com/zerolend/28987-sc-medium-manipulation-of-governance-is-possible-by-minti...)
* [28988 - \[SC - High\] Mechanism for distributing extra reward tokens ...](https://reports.immunefi.com/zerolend/28988-sc-high-mechanism-for-distributing-extra-reward-tokens-...)
* [28992 - \[SC - High\] Permanent freezing of additional reward tokens](https://reports.immunefi.com/zerolend/28992-sc-high-permanent-freezing-of-additional-reward-tokens)
* [29012 - \[SC - High\] Votes manipulation in PoolVoter](https://reports.immunefi.com/zerolend/29012-sc-high-votes-manipulation-in-poolvoter)
* [29019 - \[SC - High\] The ZeroLendToken contract in the Governance mo...](https://reports.immunefi.com/zerolend/29019-sc-high-the-zerolendtoken-contract-in-the-governance-mo...)
* [29026 - \[SC - High\] Hackers can steal the unclaimed yield to get th...](https://reports.immunefi.com/zerolend/29026-sc-high-hackers-can-steal-the-unclaimed-yield-to-get-th...)
* [29031 - \[SC - Critical\] VestedZeroNFT tokens can be directly stolen thr...](https://reports.immunefi.com/zerolend/29031-sc-critical-vestedzeronft-tokens-can-be-directly-stolen-thr...)
* [29047 - \[SC - Insight\] Reward is lost when totalSupply](https://reports.immunefi.com/zerolend/29047-sc-insight-reward-is-lost-when-totalsupply)
* [29052 - \[SC - Medium\] Pool funds could be locked due to Division by zero](https://reports.immunefi.com/zerolend/29052-sc-medium-pool-funds-could-be-locked-due-to-division-by-zero)
* [29059 - \[SC - Medium\] Race condition in StakingBonus will result in s...](https://reports.immunefi.com/zerolend/29059-sc-medium-race-condition-in-stakingbonus-will-result-in-s...)
* [29062 - \[SC - Critical\] Attacker can steal locked balance of staked nft...](https://reports.immunefi.com/zerolend/29062-sc-critical-attacker-can-steal-locked-balance-of-staked-nft...)
* [29068 - \[SC - Medium\] AaveOracle contract does not verify price stale...](https://reports.immunefi.com/zerolend/29068-sc-medium-aaveoracle-contract-does-not-verify-price-stale...)
* [29069 - \[SC - Medium\] Ability to deny users from repaying and supplyi...](https://reports.immunefi.com/zerolend/29069-sc-medium-ability-to-deny-users-from-repaying-and-supplyi...)
* [29078 - \[SC - High\] Theft of unclaimed yield due to the wrong calcu...](https://reports.immunefi.com/zerolend/29078-sc-high-theft-of-unclaimed-yield-due-to-the-wrong-calcu...)
* [29095 - \[SC - High\] The lockers supply can be arbitrarily inflated ...](https://reports.immunefi.com/zerolend/29095-sc-high-the-lockers-supply-can-be-arbitrarily-inflated-...)
* [29101 - \[SC - High\] Staking in BaseLocker is broken](https://reports.immunefi.com/zerolend/29101-sc-high-staking-in-baselocker-is-broken)
* [29103 - \[SC - Critical\] Omnichain Stakers can permanently lose access t...](https://reports.immunefi.com/zerolend/29103-sc-critical-omnichain-stakers-can-permanently-lose-access-t...)
* [29120 - \[SC - High\] Bug in reward distribution logic leads to theft...](https://reports.immunefi.com/zerolend/29120-sc-high-bug-in-reward-distribution-logic-leads-to-theft...)
* [29121 - \[SC - High\] Any rewards sent to the PoolVoter will be undis...](https://reports.immunefi.com/zerolend/29121-sc-high-any-rewards-sent-to-the-poolvoter-will-be-undis...)
* [29122 - \[SC - High\] All reward tokens can be stolen by an attacker ...](https://reports.immunefi.com/zerolend/29122-sc-high-all-reward-tokens-can-be-stolen-by-an-attacker-...)
* [29123 - \[SC - Medium\] Griefing attack for VestedZeroNFT](https://reports.immunefi.com/zerolend/29123-sc-medium-griefing-attack-for-vestedzeronft)
* [29130 - \[SC - Medium\] Unlimited Minting of VestedZeroNFT](https://reports.immunefi.com/zerolend/29130-sc-medium-unlimited-minting-of-vestedzeronft)
* [29135 - \[SC - Critical\] OmnichainStakingsolunstakeLP and OmnichainStaki...](https://reports.immunefi.com/zerolend/29135-sc-critical-omnichainstakingsolunstakelp-and-omnichainstaki...)
* [29137 - \[SC - High\] ZeroLend token is not behaving properly while c...](https://reports.immunefi.com/zerolend/29137-sc-high-zerolend-token-is-not-behaving-properly-while-c...)
* [29139 - \[SC - Medium\] Griefing attack to cause users to suffer penalt...](https://reports.immunefi.com/zerolend/29139-sc-medium-griefing-attack-to-cause-users-to-suffer-penalt...)
* [29145 - \[SC - High\] zeroLendToken is bricked to use for whitelisted...](https://reports.immunefi.com/zerolend/29145-sc-high-zerolendtoken-is-bricked-to-use-for-whitelisted...)
* [29149 - \[SC - Insight\] DoS in Zero Registry configuration updation](https://reports.immunefi.com/zerolend/29149-sc-insight-dos-in-zero-registry-configuration-updation)
* [29170 - \[SC - Medium\] DoS by front-runnable externall call](https://reports.immunefi.com/zerolend/29170-sc-medium-dos-by-front-runnable-externall-call)
* [29175 - \[SC - Insight\] Granting DEFAULT\_ADMIN\_ROLE to the deployer in ...](https://reports.immunefi.com/zerolend/29175-sc-insight-granting-default_admin_role-to-the-deployer-in-...)
* [29181 - \[SC - High\] Tautology in PoolVoterregisterGauge makes it im...](https://reports.immunefi.com/zerolend/29181-sc-high-tautology-in-poolvoterregistergauge-makes-it-im...)
* [29186 - \[SC - Insight\] ValidationLogicvalidateBorrow - L-L Incorrect i...](https://reports.immunefi.com/zerolend/29186-sc-insight-validationlogicvalidateborrow-l-l-incorrect-i...)
* [29188 - \[SC - Insight\] StakingBonuscalculateBonus wrongly utilizes BPS](https://reports.immunefi.com/zerolend/29188-sc-insight-stakingbonuscalculatebonus-wrongly-utilizes-bps)
* [29189 - \[SC - High\] ZeroLendToken doesnt allow whitelisted users to...](https://reports.immunefi.com/zerolend/29189-sc-high-zerolendtoken-doesnt-allow-whitelisted-users-to...)
* [29190 - \[SC - Insight\] Permanent freezing of up to wei of yield each ...](https://reports.immunefi.com/zerolend/29190-sc-insight-permanent-freezing-of-up-to-wei-of-yield-each-...)
* [29198 - \[SC - Medium\] Griefing attack to cause the rewards of a user ...](https://reports.immunefi.com/zerolend/29198-sc-medium-griefing-attack-to-cause-the-rewards-of-a-user-...)
* [29204 - \[SC - Critical\] Direct theft of Users VestedZeroNFT by using sp...](https://reports.immunefi.com/zerolend/29204-sc-critical-direct-theft-of-users-vestedzeronft-by-using-sp...)
* [29211 - \[SC - Critical\] Voting manipulation cause by the possibility to...](https://reports.immunefi.com/zerolend/29211-sc-critical-voting-manipulation-cause-by-the-possibility-to...)
* [29213 - \[SC - High\] The function always revert if \_stakeNFT True d...](https://reports.immunefi.com/zerolend/29213-sc-high-the-function-always-revert-if-_stakenft-true-d...)
* [29225 - \[SC - Insight\] EarlyZEROVesting is having a rounding issue and...](https://reports.immunefi.com/zerolend/29225-sc-insight-earlyzerovesting-is-having-a-rounding-issue-and...)
* [29244 - \[SC - Insight\] Using permit inside the function can lead to Do...](https://reports.immunefi.com/zerolend/29244-sc-insight-using-permit-inside-the-function-can-lead-to-do...)
* [29249 - \[SC - Insight\] Using permit inside the function can lead to Do...](https://reports.immunefi.com/zerolend/29249-sc-insight-using-permit-inside-the-function-can-lead-to-do...)
* [29262 - \[SC - Insight\] Some users can get more rewards than others whi...](https://reports.immunefi.com/zerolend/29262-sc-insight-some-users-can-get-more-rewards-than-others-whi...)
* [29267 - \[SC - High\] Wrong implementation causing some functions in ...](https://reports.immunefi.com/zerolend/29267-sc-high-wrong-implementation-causing-some-functions-in-...)
* [29270 - \[SC - High\] The main functionality of the contract EarlyZER...](https://reports.immunefi.com/zerolend/29270-sc-high-the-main-functionality-of-the-contract-earlyzer...)
* [29286 - \[SC - Medium\] MultiSigWalletremoveOwner - L The bug allows th...](https://reports.immunefi.com/zerolend/29286-sc-medium-multisigwalletremoveowner-l-the-bug-allows-th...)
* [29288 - \[SC - Critical\] all NFTs can be stolen by calling VestedZeroNFT...](https://reports.immunefi.com/zerolend/29288-sc-critical-all-nfts-can-be-stolen-by-calling-vestedzeronft...)
* [29322 - \[SC - Insight\] Use safeTransfer instead of transfer](https://reports.immunefi.com/zerolend/29322-sc-insight-use-safetransfer-instead-of-transfer)
* [29328 - \[SC - Insight\] zkSync ACLManager EOA as EMERGENCY\_ADMIN](https://reports.immunefi.com/zerolend/29328-sc-insight-zksync-aclmanager-eoa-as-emergency_admin)
* [29329 - \[SC - Insight\] Manta ACLManager EOA as EMERGENCY\_ADMIN](https://reports.immunefi.com/zerolend/29329-sc-insight-manta-aclmanager-eoa-as-emergency_admin)
* [29331 - \[SC - Insight\] Manta ACLManager EOA as RISK\_ADMIN](https://reports.immunefi.com/zerolend/29331-sc-insight-manta-aclmanager-eoa-as-risk_admin)
* [29332 - \[SC - Insight\] Manta ReservesSetupHelper EOA as owner](https://reports.immunefi.com/zerolend/29332-sc-insight-manta-reservessetuphelper-eoa-as-owner)
* [29342 - \[SC - Insight\] Lack of chainID validation allows reuse of sign...](https://reports.immunefi.com/zerolend/29342-sc-insight-lack-of-chainid-validation-allows-reuse-of-sign...)
* [29344 - \[SC - Insight\] Price assets deposited manipulation](https://reports.immunefi.com/zerolend/29344-sc-insight-price-assets-deposited-manipulation)