How severe is CVE-2024-12604?

CVE-2024-12604 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2024-12604

Name: tap\&sign
Author: tapandsign

6.5MEDIUM

Cleartext Storage of Sensitive Information in an Environment Variable, Weak Password Recovery Mechanism for Forgotten Password vulnerability in Tapandsign Technologies Tap&Sign App allows Password Rec

Publicado: 3/10/2025Actualizado: 9/12/2025

Descripción

Cleartext Storage of Sensitive Information in an Environment Variable, Weak Password Recovery Mechanism for Forgotten Password vulnerability in Tapandsign Technologies Tap&Sign App allows Password Recovery Exploitation, Functionality Misuse.This issue affects Tap&Sign App: before V.1.025.

Análisis IAImpulsado por IA

Productos Afectados

tapandsigntap\&sign

Referencias

https://docs.tapandsign.com/tap-and-sign/tap-and-sign-v.1.025-surum-notlari
Release Notes
https://www.usom.gov.tr/bildirim/tr-25-0063
Third Party Advisory