CVE-2022-1743

The tested version of Dominion Voting System ImageCast X can be manipulated to cause arbitrary code execution by specially crafted election definition files. An attacker could leverage this vulnerability to spread malicious code to ImageCast X devices from the EMS.
References
Link Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-22-154-01 Mitigation Third Party Advisory US Government Resource
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:dominionvoting:imagecast_x:*:*:*:*:*:*:*:*
cpe:2.3:h:dominionvoting:democracy_suite:5.5-a:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
OR cpe:2.3:a:dominionvoting:imagecast_x:5.5.10.30:*:*:*:*:*:*:*
cpe:2.3:a:dominionvoting:imagecast_x:5.5.10.32:*:*:*:*:*:*:*
cpe:2.3:h:dominionvoting:democracy_suite:5.5-a:*:*:*:*:*:*:*

History

No history.

Information

Published : 2022-06-24 15:15

Updated : 2024-02-28 19:09


NVD link : CVE-2022-1743

Mitre link : CVE-2022-1743

CVE.ORG link : CVE-2022-1743


JSON object : View

Products Affected

dominionvoting

  • democracy_suite
  • imagecast_x
CWE
CWE-24

Path Traversal: '../filedir'