{"id":122063,"date":"2024-05-15T14:56:42","date_gmt":"2024-05-15T14:56:42","guid":{"rendered":"https:\/\/bas-ip.com\/?page_id=122063"},"modified":"2024-11-05T10:16:57","modified_gmt":"2024-11-05T10:16:57","slug":"bsa-000001","status":"publish","type":"page","link":"https:\/\/bas-ip.com\/cs\/bsa-000001\/","title":{"rendered":"BSA-000001"},"content":{"rendered":"<h2 class=\"wp-block-heading\" id=\"bsa-000001\">P\u0159ehled<\/h2>\n\n\n\n<p>V n\u011bkolika interkomov\u00fdch za\u0159\u00edzen\u00edch BAS-IP byl objeven probl\u00e9m. P\u0159\u00edstupem k webov\u00e9mu rozhran\u00ed za\u0159\u00edzen\u00ed nebo rozhran\u00ed API m\u016f\u017ee \u00fato\u010dn\u00edk z\u00edskat hesla pro server RTSP a \u00fa\u010det SIP za\u0159\u00edzen\u00ed.<\/p>\n\n\n\n<p>Spole\u010dnost BAS-IP klasifikuje tyto zranitelnosti jako st\u0159edn\u00ed a doporu\u010duje z\u00e1kazn\u00edk\u016fm aktualizovat dot\u010den\u00e9 modely BAS-IP na nejnov\u011bj\u0161\u00ed verzi firmwaru.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"risk-assessment\">Hodnocen\u00ed rizik<\/h2>\n\n\n\n<p>Potenci\u00e1ln\u00ed protivn\u00edk pot\u0159ebuje s\u00ed\u0165ov\u00fd p\u0159\u00edstup k za\u0159\u00edzen\u00ed, aby mohl zranitelnosti zneu\u017e\u00edt. K \u00fasp\u011b\u0161n\u00e9mu napaden\u00ed za\u0159\u00edzen\u00ed pot\u0159ebuje protivn\u00edk pov\u011b\u0159en\u00ed. Riziko z\u00e1vis\u00ed na tom, jak je za\u0159\u00edzen\u00ed vystaveno riziku. Za\u0159\u00edzen\u00ed sm\u011b\u0159uj\u00edc\u00ed k internetu (nap\u0159. vystaven\u00e1 p\u0159esm\u011brov\u00e1n\u00ed portu sm\u011brova\u010de) jsou vystavena vysok\u00e9mu riziku. Produkty nasazen\u00e9 v chr\u00e1n\u011bn\u00e9 m\u00edstn\u00ed s\u00edti jsou ohro\u017eeny m\u00e9n\u011b.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"risk-mitigation\">Zm\u00edrn\u011bn\u00ed rizik<\/h2>\n\n\n\n<ul class=\"wp-block-list\">\n<li>D\u016frazn\u011b doporu\u010dujeme aktualizovat dot\u010den\u00e9 modely na nejnov\u011bj\u0161\u00ed firmware.<\/li>\n\n\n\n<li>Nedoporu\u010duje se vystavovat za\u0159\u00edzen\u00ed p\u0159\u00edm\u00e9mu p\u0159ipojen\u00ed k internetu (port-forwarding).<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"affected-models-and-patched-firmware\">Posti\u017een\u00e9 modely a opraven\u00fd firmware<\/h2>\n\n\n\n<p>Seznam dot\u010den\u00fdch model\u016f:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>AV-01D<\/li>\n\n\n\n<li>AV-01MD<\/li>\n\n\n\n<li>AV-01MFD<\/li>\n\n\n\n<li>AV-01ED<\/li>\n\n\n\n<li>AV-01KD<\/li>\n\n\n\n<li>AV-01BD<\/li>\n\n\n\n<li>AV-01KBD<\/li>\n\n\n\n<li>AV-02D<\/li>\n\n\n\n<li>AV-02IDE<\/li>\n\n\n\n<li>AV-02IDR<\/li>\n\n\n\n<li>AV-02IPD<\/li>\n\n\n\n<li>AV-02FDE<\/li>\n\n\n\n<li>AV-02FDR<\/li>\n\n\n\n<li>AV-03D<\/li>\n\n\n\n<li>AV-03BD<\/li>\n\n\n\n<li>AV-04AFD<\/li>\n\n\n\n<li>AV-04ASD<\/li>\n\n\n\n<li>AV-04FD<\/li>\n\n\n\n<li>AV-04SD<\/li>\n\n\n\n<li>AV-05FD<\/li>\n\n\n\n<li>AV-05SD<\/li>\n\n\n\n<li>AA-07BD<\/li>\n\n\n\n<li>AA-07BDI<\/li>\n\n\n\n<li>BA-04BD<\/li>\n\n\n\n<li>BA-04MD<\/li>\n\n\n\n<li>BA-08BD<\/li>\n\n\n\n<li>BA-08MD<\/li>\n\n\n\n<li>BA-12BD<\/li>\n\n\n\n<li>BA-12MD<\/li>\n\n\n\n<li>CR-02BD<\/li>\n<\/ul>\n\n\n\n<p>Opraven\u00e1 verze firmwaru:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>3.9.2<\/li>\n<\/ul>","protected":false},"excerpt":{"rendered":"<p>P\u0159ehled V n\u011bkolika interkomov\u00fdch za\u0159\u00edzen\u00edch BAS-IP byl objeven probl\u00e9m. P\u0159\u00edstupem k webov\u00e9mu rozhran\u00ed za\u0159\u00edzen\u00ed nebo rozhran\u00ed API m\u016f\u017ee \u00fato\u010dn\u00edk z\u00edskat hesla pro server RTSP a \u00fa\u010det SIP za\u0159\u00edzen\u00ed. Spole\u010dnost BAS-IP klasifikuje tyto zranitelnosti jako st\u0159edn\u00ed a doporu\u010duje z\u00e1kazn\u00edk\u016fm aktualizovat dot\u010den\u00e9 modely BAS-IP na nejnov\u011bj\u0161\u00ed verzi firmwaru. Hodnocen\u00ed rizik Potenci\u00e1ln\u00ed protivn\u00edk pot\u0159ebuje s\u00ed\u0165ov\u00fd p\u0159\u00edstup k za\u0159\u00edzen\u00ed, [&hellip;]<\/p>","protected":false},"author":3,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"inline_featured_image":false,"footnotes":""},"class_list":["post-122063","page","type-page","status-publish","hentry"],"acf":[],"_links":{"self":[{"href":"https:\/\/bas-ip.com\/cs\/wp-json\/wp\/v2\/pages\/122063","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/bas-ip.com\/cs\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/bas-ip.com\/cs\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/bas-ip.com\/cs\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/bas-ip.com\/cs\/wp-json\/wp\/v2\/comments?post=122063"}],"version-history":[{"count":1,"href":"https:\/\/bas-ip.com\/cs\/wp-json\/wp\/v2\/pages\/122063\/revisions"}],"predecessor-version":[{"id":122064,"href":"https:\/\/bas-ip.com\/cs\/wp-json\/wp\/v2\/pages\/122063\/revisions\/122064"}],"wp:attachment":[{"href":"https:\/\/bas-ip.com\/cs\/wp-json\/wp\/v2\/media?parent=122063"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}