CVE-2022-1740

Summary

The tested version of Dominion Voting Systems ImageCast X’s on-screen application hash display feature, audit log export, and application export functionality rely on self-attestation mechanisms. An attacker could leverage this vulnerability to disguise malicious applications on a device.

Affected Software

VendorProductVersion RangeStatus
Dominion Voting SystemsImageCast X applicationVersion 5.5-A Versions 5.5.10.30 and 5.5.10.32affected
Dominion Voting SystemsImageCast X firmwareVersion 5.5-Aaffected

Weaknesses

  • CWE-1283: CWE-1283

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References