CVE-2022-1746

Summary

The authentication mechanism used by poll workers to administer voting using the tested version of Dominion Voting Systems ImageCast X can expose cryptographic secrets used to protect election information. An attacker could leverage this vulnerability to gain access to sensitive information and perform privileged actions, potentially affecting other election equipment.

Affected Software

VendorProductVersion RangeStatus
Dominion Voting SystemsImageCast X applicationVersion 5.5-A Versions 5.5.10.30 and 5.5.10.32affected
Dominion Voting SystemsImageCast X firmwareVersion 5.5-Aaffected

Weaknesses

  • CWE-266: CWE-266

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References