What is CVE-2024-12604?

CVE-2024-12604 is a medium-severity vulnerability in Tapandsign Tap\&sign, classified under CWE-526. CVSS score: 6.5/10. Published 2025-03-10.

How severe is CVE-2024-12604?

Medium severity. CVSS v3 base score is 6.5 out of 10.

Vulnerability in Tapandsign Tap\&sign

CVE-2024-12604

Cleartext Storage of Sensitive Information in an Environment Variable, Weak Password Recovery Mechanism for Forgotten Password vulnerability in Tapandsign Technologies Tap&Sign App allows Password Recovery Exploitation, Functionality Misus…

EPSS: 0.001 (29.1th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N.

Affected products

Tapandsign Tap\&sign
Tapandsign Technologies Tap&sign App — versions 0

Weakness classification (CWE)

References

iletisim@usom.gov.tr (Release Notes)
iletisim@usom.gov.tr (Third Party Advisory, government-resource, broken-link)
iletisim@usom.gov.tr (government-resource)

Frequently asked questions

What is CVE-2024-12604?: CVE-2024-12604 is a medium-severity vulnerability in Tapandsign Tap\&sign, classified under CWE-526. CVSS score: 6.5/10. Published 2025-03-10.
How severe is CVE-2024-12604?: Medium severity. CVSS v3 base score is 6.5 out of 10.