Posted by Christopher Dickinson via Fulldisclosure on Oct 13
Security Advisory: Multiple High-Severity Vulnerabilities in Suno.com
CVE Identifiers
* CVE-2025-[PENDING] – Excessive Data Exposure / JWT Token Leakage
* CVE-2025-[PENDING] – Broken Object Level Authorization (IDOR)
* CVE-2025-[PENDING] – Unrestricted Resource Consumption (DoS)
Executive Summary
This security advisory details three significant vulnerabilities discovered in the Suno.com web application and API
infrastructure on October 9,…
– Read More – Full Disclosure
