How severe is CVE-2024-12604?

CVE-2024-12604 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2024-12604

Name: tap\&sign
Author: tapandsign

6.5MEDIUM

Cleartext Storage of Sensitive Information in an Environment Variable, Weak Password Recovery Mechanism for Forgotten Password vulnerability in Tapandsign Technologies Tap&Sign App allows Password Rec

Опубликовано: 3/10/2025Обновлено: 9/12/2025

Описание

Cleartext Storage of Sensitive Information in an Environment Variable, Weak Password Recovery Mechanism for Forgotten Password vulnerability in Tapandsign Technologies Tap&Sign App allows Password Recovery Exploitation, Functionality Misuse.This issue affects Tap&Sign App: before V.1.025.

ИИ-АнализНа базе ИИ

Затронутые продукты

tapandsigntap\&sign

Ссылки

https://docs.tapandsign.com/tap-and-sign/tap-and-sign-v.1.025-surum-notlari
Release Notes
https://www.usom.gov.tr/bildirim/tr-25-0063
Third Party Advisory