Vulnerabilities > CVE-2024-12604 - Information Exposure Through Environmental Variables vulnerability in Tapandsign Tap&Sign

047910
CVSS 6.5 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
LOW
Integrity impact
LOW
Availability impact
NONE
network
low complexity
tapandsign
CWE-526

Summary

Cleartext Storage of Sensitive Information in an Environment Variable, Weak Password Recovery Mechanism for Forgotten Password vulnerability in Tapandsign Technologies Tap&Sign App allows Password Recovery Exploitation, Functionality Misuse.This issue affects Tap&Sign App: before V.1.025.

Vulnerable Configurations

Part Description Count
Application
Tapandsign
1