Vulnerability Database

309,136

Total vulnerabilities in the database

CVE-2024-57708

An issue in OneTrust SDK v.6.33.0 allows a local attacker to cause a denial of service via the Object.setPrototypeOf, proto, and Object.assign components. NOTE: this is disputed by the Supplier who does not agree it is a prototype pollution vulnerability.

Published: Jun 25, 2025
Updated: Nov 16, 2025
CVE: CVE-2024-57708
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.7
AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWEs:

CWE-400
CWE-471
CWE-1321
CWE-915

Affected Software
References

No affected software listed.

https://discord.com/assets/oneTrust/v4/scripttemplates/6.33.0/otBannerSdk.js
https://github.com/brotheralameen1/Discordforschool/security/advisories/GHSA-63xr-98vc-whx5
https://packetstorm.news/files/id/201222/

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo