Vulnerabilities > CVE-2022-1743 - Path Traversal: '../filedir' vulnerability in Dominionvoting Imagecast X 5.5.10.30/5.5.10.32

047910
CVSS 7.2 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
local
low complexity
dominionvoting
CWE-24

Summary

The tested version of Dominion Voting System ImageCast X can be manipulated to cause arbitrary code execution by specially crafted election definition files. An attacker could leverage this vulnerability to spread malicious code to ImageCast X devices from the EMS.

Common Weakness Enumeration (CWE)