The tested version of Dominion Voting System ImageCast X can be manipulated to cause arbitrary code execution by specially crafted election definition files. An attacker could leverage this vulnerability to spread malicious code to ImageCast X devices from the EMS.
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HDominionvoting Democracy Suite
HWDominionvoting5.5-aDominionvoting Imagecast X
APPDominionvoting5.5.10.305.5.10.32
Related vulnerabilities
The authentication mechanism used by poll workers to administer voting using the tested version of Dominion Vo...
The tested version of Dominion Voting Systems ImageCast X’s on-screen application hash display feature, audit ...
The tested version of Dominion Voting Systems ImageCast X has a Terminal Emulator application which could be l...
The tested version of Dominion Voting Systems ImageCast X allows for rebooting into Android Safe Mode, which a...
Applications on the tested version of Dominion Voting Systems ImageCast X can execute code with elevated privi...