PatchSiren

bunny.net CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

MEDIUM bunny.net CVE published 2026-06-15

CVE-2025-68049

A Subscriber Broken Access Control vulnerability was discovered in bunny.net <= 2.3.6 versions. This vulnerability has been assigned a CVSS score of 6.3, indicating a Medium severity level. The vulnerability was published on [CVE.org](resourceLinkAnnotations:cve-org) and additional details can be found on [NVD](resourceLinkAnnotations:nvd).