HIGH🇬🇧 English

CVE-2022-1746

CVSS 7.6v3.1pub. 2022-06-24upd. 2025-04-17

The authentication mechanism used by poll workers to administer voting using the tested version of Dominion Voting Systems ImageCast X can expose cryptographic secrets used to protect election information. An attacker could leverage this vulnerability to gain access to sensitive information and perform privileged actions, potentially affecting other election equipment.

oryginał EN
CVSS Vector
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
  • Dominionvoting Democracy Suite

    HW
    Dominionvoting
    5.5-a
  • Dominionvoting Imagecast X

    APP
    Dominionvoting
    5.5.10.305.5.10.32
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2022-1739MEDIUM6.8ten sam produkt

The tested version of Dominion Voting Systems ImageCast X does not validate application signatures to a truste...

CVE-2022-1740MEDIUM4.6ten sam produkt

The tested version of Dominion Voting Systems ImageCast X’s on-screen application hash display feature, audit ...

CVE-2022-1741MEDIUM6.8ten sam produkt

The tested version of Dominion Voting Systems ImageCast X has a Terminal Emulator application which could be l...

CVE-2022-1742MEDIUM6.8ten sam produkt

The tested version of Dominion Voting Systems ImageCast X allows for rebooting into Android Safe Mode, which a...

CVE-2022-1743MEDIUM6.8ten sam produkt

The tested version of Dominion Voting System ImageCast X can be manipulated to cause arbitrary code execution ...