5.5.10.32

CVSS 6.8 - MEDIUM

Attack vector

PHYSICAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

low complexity

dominionvoting

NVD

Published: 2022-06-24

Updated: 2024-11-21

Summary

The authentication mechanism used by technicians on the tested version of Dominion Voting Systems ImageCast X is susceptible to forgery. An attacker with physical access may use this to gain administrative privileges on a device and install malicious code or perform arbitrary administrative actions.

Vulnerable Configurations

Part	Description	Count
OS	Dominionvoting Dominionvoting Imagecast X *	1
Hardware	Dominionvoting Dominionvoting Democracy Suite 5.5-A	1
Application	Dominionvoting Dominionvoting Imagecast X 5.5.10.30 Dominionvoting Imagecast X 5.5.10.32	2

References

https://www.cisa.gov/uscert/ics/advisories/icsa-22-154-01
https://www.cisa.gov/uscert/ics/advisories/icsa-22-154-01