Tap&Sign 安全漏洞

Tap&Sign is an easy-to-use, legally binding electronic signature solution from Tap&Sign, Inc. A security vulnerability exists in Tap&Sign versions prior to V.1.025 that stems from sensitive information stored in plaintext in an environment variable and a weak password recovery mechanism that coul...

PT-2024-35971 · Imager +1 · Imager +1

Name of the Vulnerable Software and Affected Versions: Imager package versions prior to 1.025 Description: The issue is a heap-based buffer overflow that can lead to denial of service or possibly other unspecified impacts when the trim method is called on a crafted input image. Recommendations: F...