CNNVD-202506-3169 Information

CNNVD ID

CNNVD-202506-3169

Related CVE

CVE-2024-57708

• CNNVD Published: 2025-06-25

Description (Chinese)

OneTrust SDK是美国OneTrust公司的一套软件开发工具包。 OneTrust SDK 6.33.0版本存在安全漏洞，该漏洞源于Object.setPrototypeOf、__proto__和Object.assign组件可能导致拒绝服务。

Description (English)

OneTrust SDK is a software development toolkit for OneTrust in the United States. OneTrust SDK version 6.3.0 contains a security loophole, which originates from the components Object.setProttypeof, proto and Object.assign that may result in the denial of services.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

OneTrust

Published

2025-06-25

Last Modified

2026-02-24

References

https://discord.com/assets/oneTrust/v4/scripttemplates/6.33.0/otBannerSdk.js https://github.com/brotheralameen1/Discordforschool/security/advisories/GHSA-63xr-98vc-whx5 https://access.redhat.com/security/cve/cve-2024-57708 https://www.exploit-db.com/exploits/52340