CVE-2022-1739

Published: Jun 24, 2022

Modified: Apr 17, 2025

PUBLISHED

Description

The tested version of Dominion Voting Systems ImageCast X does not validate application signatures to a trusted root certificate. Use of a trusted root certificate ensures software installed on a device is traceable to, or verifiable against, a cryptographic key provided by the manufacturer to detect tampering. An attacker could leverage this vulnerability to install malicious code, which could also be spread to other vulnerable ImageCast X devices via removable media.

Vendor	Product	Versions
Dominion Voting Systems	ImageCast X firmware	affected `Version 5.5-A`
Dominion Voting Systems	ImageCast X application	affected `Versions 5.5.10.30 and 5.5.10.32`

Weaknesses (CWE)

CWE-347

References

https://www.cisa.gov/uscert/ics/advisories/icsa-22-154-01

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-1739

Description

Affected Products

Weaknesses (CWE)

References