CVE-2022-1746

CVE-2022-1746: 2.2.8 INCORRECT PRIVILEGE ASSIGNMENT CWE-266

Vendor Dominion Voting Systems
Product ImageCast X application
Weakness CWE-266
Published June 24, 2022
Last update April 17, 2025

CVSS base score

What the vulnerability does

01Description

The authentication mechanism used by poll workers to administer voting using the tested version of Dominion Voting Systems ImageCast X can expose cryptographic secrets used to protect election information. An attacker could leverage this vulnerability to gain access to sensitive information and perform privileged actions, potentially affecting other election equipment.

Key dates

02Disclosure timeline

June 24, 2022 CVE published
April 17, 2025 Record updated