CVE-2022-1742

2.2.4 IMPROPER PROTECTION OF ALTERNATE PATH CWE-424

CVSS 6.8 MEDIUMEPSS 0.3%CWE-424

The tested version of Dominion Voting Systems ImageCast X allows for rebooting into Android Safe Mode, which allows an attacker to directly access the operating system. An attacker could leverage this vulnerability to escalate privileges on a device and/or install malicious code.

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Produtos afetados

Dominion Voting Systems · ImageCast X application Dominion Voting Systems · ImageCast X firmware

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://www.cisa.gov/uscert/ics/advisories/icsa-22-154-01