CVE-2022-1745

CVE-2022-1745: 2.2.7 AUTHENTICATION BYPASS BY SPOOFING CWE-290

Vendor Dominion Voting Systems
Product ImageCast X application
Weakness CWE-290
Published June 24, 2022
Last update April 17, 2025

CVSS base score

What the vulnerability does

01Description

The authentication mechanism used by technicians on the tested version of Dominion Voting Systems ImageCast X is susceptible to forgery. An attacker with physical access may use this to gain administrative privileges on a device and install malicious code or perform arbitrary administrative actions.

Key dates

02Disclosure timeline

June 24, 2022 CVE published
April 17, 2025 Record updated