HIGH🇵🇱 Wersja polska

CVE-2022-1746

CVSS 7.6v3.1pub. 2022-06-24upd. 2025-04-17

The authentication mechanism used by poll workers to administer voting using the tested version of Dominion Voting Systems ImageCast X can expose cryptographic secrets used to protect election information. An attacker could leverage this vulnerability to gain access to sensitive information and perform privileged actions, potentially affecting other election equipment.

CVSS Vector
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
  • Dominionvoting Democracy Suite

    HW
    Dominionvoting
    5.5-a
  • Dominionvoting Imagecast X

    APP
    Dominionvoting
    5.5.10.305.5.10.32
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2022-1739MEDIUM6.8ten sam produkt

The tested version of Dominion Voting Systems ImageCast X does not validate application signatures to a truste...

CVE-2022-1740MEDIUM4.6ten sam produkt

The tested version of Dominion Voting Systems ImageCast X’s on-screen application hash display feature, audit ...

CVE-2022-1741MEDIUM6.8ten sam produkt

The tested version of Dominion Voting Systems ImageCast X has a Terminal Emulator application which could be l...

CVE-2022-1742MEDIUM6.8ten sam produkt

The tested version of Dominion Voting Systems ImageCast X allows for rebooting into Android Safe Mode, which a...

CVE-2022-1743MEDIUM6.8ten sam produkt

The tested version of Dominion Voting System ImageCast X can be manipulated to cause arbitrary code execution ...