Hidden Functionality

CVE-2022-1741

Medium

6.8/10

Summary

The tested version of Dominion Voting Systems ImageCast X has a Terminal Emulator application which could be leveraged by an attacker to gain elevated privileges on a device and/or install malicious code.

Attack Complexity: LOW
Attack Vector: PHYSICAL
Integrity Impact: HIGH
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: NONE
Confidentiality Impact: HIGH
Availability Impact: HIGH

CWE-912 - Hidden Functionality

The software contains functionality that is not documented, not part of the specification, and not accessible through an interface or command sequence that is obvious to the software's users or administrators.

References

Advisory Timeline

Published Jun 24, 2022

Hidden Functionality

CVE-2022-1741

Summary

CWE-912 - Hidden Functionality

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS