5.5.10.32

CVSS 4.6 - MEDIUM

Attack vector

PHYSICAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

low complexity

dominionvoting

NVD

Published: 2022-06-24

Updated: 2023-07-24

Summary

The tested version of Dominion Voting Systems ImageCast X’s on-screen application hash display feature, audit log export, and application export functionality rely on self-attestation mechanisms. An attacker could leverage this vulnerability to disguise malicious applications on a device.

Vulnerable Configurations

Part	Description	Count
OS	Dominionvoting Dominionvoting Imagecast X *	1
Hardware	Dominionvoting Dominionvoting Democracy Suite 5.5-A	1
Application	Dominionvoting Dominionvoting Imagecast X 5.5.10.30 Dominionvoting Imagecast X 5.5.10.32	2

References

https://www.cisa.gov/uscert/ics/advisories/icsa-22-154-01