The issue has been assigned the identifier CVE-2019-11866. It has been assigned the Common Vulnerabilities and Exposures classification. A CVX search for ‘Siveillance V2022 R2’ will reveal more information about this vulnerability. Siveillance has confirmed this issue and released a security update addressing it. Siveillance recommends updating to V22.2a as soon as possible. The latest version of Siveillance V2022 R2 is available for download here. Siveillance recommends monitoring active network traffic for signs of a possible attack. Sive surveillance recommends reviewing log files for signs of possible attacks.
Summary of the Issue
One of the most important events in recent history is the 2020 US Presidential election. As a leading provider of election surveillance products, Siveillance is committed to providing customers with an excellent experience before, during, and after the election season. It is our goal to provide customers with timely information on vulnerabilities and concerns related to their voting systems as well as product updates.
Siveillance V2022 R2 – Installing Without Network Access
Siveillance V2022 R2 is not available for download via the website and must be installed using a CD.
Siveillance recommends reading the instructions in the installation guide before installing. These instructions can be found here. Sive surveillance recommends updating to V22.2a as soon as possible. The latest version of Siveillance V2022 R2 is available for download here. Siveillance recommends monitoring active network traffic for signs of a possible attack. Sive surveillance also recommends reviewing log files for signs of possible attacks
Vulnerability Description
Siveillance released a security update for all versions of Siveillance V2022 back in 2019. The issue has been assigned the identifier CVE-2019-11866.
Vulnerability Details
An issue has been identified in the Siveillance V2022 R2 product. This issue may allow an attacker to perform arbitrary remote code execution on the affected system.
Siveillance V2022 R2 Software Overview
Siveillance released V22.2a, which is a minor release of their software. The main difference between V22.2a and V22.1 is that V22.2a addresses a security issue discovered by Siveillance in previous versions of their software. It is also worth noting that this version was released on October 23, 2018, a day before the date this blog post was published.
Siveillance recommends updating to V22.2a as soon as possible so that your system remains secure through the end of 2019 (as this vulnerability will be addressed in 2020).
Timeline
Published on: 10/21/2022 14:15:00 UTC
Last modified on: 10/24/2022 15:46:00 UTC