@openzeppelin/contracts is vulnerable to Interpretation Conflict. The vulnerability exists because the TransparentUpgradeableProxy
clashing selector calls may not be delegated if the clashing function has a different signature with incompatible ABI encoding, which could lead to proxy revert while attempting to decode the arguments from calldata
github.com/advisories/GHSA-mx2q-35m2-x2rh
github.com/OpenZeppelin/openzeppelin-contracts/commit/c01ea99123a9be7494557b6b2ca5942c6be487f9
github.com/OpenZeppelin/openzeppelin-contracts/pull/4154
github.com/OpenZeppelin/openzeppelin-contracts/releases/tag/v4.8.3
github.com/OpenZeppelin/openzeppelin-contracts/security/advisories/GHSA-mx2q-35m2-x2rh