CVE-2022-1745

The authentication mechanism used by technicians on the tested version of Dominion Voting Systems ImageCast X is susceptible to forgery. An attacker with physical access may use this to gain administrative privileges on a device and install malicious code or perform arbitrary administrative actions.
References
Link Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-22-154-01 Mitigation Third Party Advisory US Government Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-22-154-01 Mitigation Third Party Advisory US Government Resource
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:dominionvoting:imagecast_x:*:*:*:*:*:*:*:*
cpe:2.3:h:dominionvoting:democracy_suite:5.5-a:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
OR cpe:2.3:a:dominionvoting:imagecast_x:5.5.10.30:*:*:*:*:*:*:*
cpe:2.3:a:dominionvoting:imagecast_x:5.5.10.32:*:*:*:*:*:*:*
cpe:2.3:h:dominionvoting:democracy_suite:5.5-a:*:*:*:*:*:*:*

History

21 Nov 2024, 06:41

Type Values Removed Values Added
References () https://www.cisa.gov/uscert/ics/advisories/icsa-22-154-01 - Mitigation, Third Party Advisory, US Government Resource () https://www.cisa.gov/uscert/ics/advisories/icsa-22-154-01 - Mitigation, Third Party Advisory, US Government Resource

Information

Published : 2022-06-24 15:15

Updated : 2024-11-21 06:41


NVD link : CVE-2022-1745

Mitre link : CVE-2022-1745

CVE.ORG link : CVE-2022-1745


JSON object : View

Products Affected

dominionvoting

  • democracy_suite
  • imagecast_x
CWE
CWE-290

Authentication Bypass by Spoofing