CVE-2022-1743

Summary

The tested version of Dominion Voting System ImageCast X can be manipulated to cause arbitrary code execution by specially crafted election definition files. An attacker could leverage this vulnerability to spread malicious code to ImageCast X devices from the EMS.

Affected Software

VendorProductVersion RangeStatus
Dominion Voting SystemImageCast X applicationVersion 5.5-A Versions 5.5.10.30 and 5.5.10.32affected
Dominion Voting SystemImageCast X firmwareVersion 5.5-Aaffected

Weaknesses

  • CWE-24: CWE-24

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References