CVE-2022-1746

The authentication mechanism used by poll workers to administer voting using the tested version of Dominion Voting Systems ImageCast X can expose cryptographic secrets used to protect election information. An attacker could leverage this vulnerability to gain access to sensitive information and perform privileged actions, potentially affecting other election equipment.
References
Link Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-22-154-01 Mitigation Third Party Advisory US Government Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-22-154-01 Mitigation Third Party Advisory US Government Resource
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:dominionvoting:imagecast_x:*:*:*:*:*:*:*:*
cpe:2.3:h:dominionvoting:democracy_suite:5.5-a:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
OR cpe:2.3:a:dominionvoting:imagecast_x:5.5.10.30:*:*:*:*:*:*:*
cpe:2.3:a:dominionvoting:imagecast_x:5.5.10.32:*:*:*:*:*:*:*
cpe:2.3:h:dominionvoting:democracy_suite:5.5-a:*:*:*:*:*:*:*

History

21 Nov 2024, 06:41

Type Values Removed Values Added
References () https://www.cisa.gov/uscert/ics/advisories/icsa-22-154-01 - Mitigation, Third Party Advisory, US Government Resource () https://www.cisa.gov/uscert/ics/advisories/icsa-22-154-01 - Mitigation, Third Party Advisory, US Government Resource

24 Jul 2023, 13:17

Type Values Removed Values Added
CWE CWE-269 CWE-863

Information

Published : 2022-06-24 15:15

Updated : 2024-11-21 06:41


NVD link : CVE-2022-1746

Mitre link : CVE-2022-1746

CVE.ORG link : CVE-2022-1746


JSON object : View

Products Affected

dominionvoting

  • democracy_suite
  • imagecast_x
CWE
CWE-266

Incorrect Privilege Assignment

CWE-863

Incorrect Authorization