{"id":122070,"date":"2024-05-15T14:56:42","date_gmt":"2024-05-15T14:56:42","guid":{"rendered":"https:\/\/bas-ip.com\/?page_id=122070"},"modified":"2024-11-05T10:25:04","modified_gmt":"2024-11-05T10:25:04","slug":"bsa-000001","status":"publish","type":"page","link":"https:\/\/bas-ip.com\/et\/bsa-000001\/","title":{"rendered":"BSA-000001"},"content":{"rendered":"<h2 class=\"wp-block-heading\" id=\"bsa-000001\">\u00dclevaade<\/h2>\n\n\n\n<p>Mitmes BAS-IP intercom seadmes on avastatud probleem. R\u00fcndaja saab seadme veebiliidesele v\u00f5i API-le ligi p\u00e4\u00e4semise teel seadme RTSP-serveri ja SIP-konto paroolid.<\/p>\n\n\n\n<p>BAS-IP klassifitseerib need haavatavused keskmiseks ja soovitab klientidel uuendada m\u00f5jutatud BAS-IP mudelid viimasele p\u00fcsivara versioonile.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"risk-assessment\">Riskide hindamine<\/h2>\n\n\n\n<p>V\u00f5imalik vastane vajab haavatavuste \u00e4rakasutamiseks v\u00f5rgujuurdep\u00e4\u00e4su seadmele. Vastase jaoks on seadme edukaks kahjustamiseks vaja volitusi. Risk s\u00f5ltub sellest, kui avatud seade on. Internetiga kokkupuutuv seade (nt ruuteri port-forward&#8217;i kaudu avatud) on suure riskiga. Kaitstud kohtv\u00f5rgus kasutatavad tooted on v\u00e4iksema riskiga.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"risk-mitigation\">Riskide maandamine<\/h2>\n\n\n\n<ul class=\"wp-block-list\">\n<li>On tungivalt soovitatav uuendada m\u00f5jutatud mudelid viimasele p\u00fcsivara versioonile.<\/li>\n\n\n\n<li>Seadmeid ei ole soovitatav otse internetti suunata (port-forwarding).<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"affected-models-and-patched-firmware\">M\u00f5jutatud mudelid ja parandatud p\u00fcsivara<\/h2>\n\n\n\n<p>M\u00f5jutatud mudelite nimekiri:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>AV-01D<\/li>\n\n\n\n<li>AV-01MD<\/li>\n\n\n\n<li>AV-01MFD<\/li>\n\n\n\n<li>AV-01ED<\/li>\n\n\n\n<li>AV-01KD<\/li>\n\n\n\n<li>AV-01BD<\/li>\n\n\n\n<li>AV-01KBD<\/li>\n\n\n\n<li>AV-02D<\/li>\n\n\n\n<li>AV-02IDE<\/li>\n\n\n\n<li>AV-02IDR<\/li>\n\n\n\n<li>AV-02IPD<\/li>\n\n\n\n<li>AV-02FDE<\/li>\n\n\n\n<li>AV-02FDR<\/li>\n\n\n\n<li>AV-03D<\/li>\n\n\n\n<li>AV-03BD<\/li>\n\n\n\n<li>AV-04AFD<\/li>\n\n\n\n<li>AV-04ASD<\/li>\n\n\n\n<li>AV-04FD<\/li>\n\n\n\n<li>AV-04SD<\/li>\n\n\n\n<li>AV-05FD<\/li>\n\n\n\n<li>AV-05SD<\/li>\n\n\n\n<li>AA-07BD<\/li>\n\n\n\n<li>AA-07BDI<\/li>\n\n\n\n<li>BA-04BD<\/li>\n\n\n\n<li>BA-04MD<\/li>\n\n\n\n<li>BA-08BD<\/li>\n\n\n\n<li>BA-08MD<\/li>\n\n\n\n<li>BA-12BD<\/li>\n\n\n\n<li>BA-12MD<\/li>\n\n\n\n<li>CR-02BD<\/li>\n<\/ul>\n\n\n\n<p>Parandatud p\u00fcsivara versioon:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>3.9.2<\/li>\n<\/ul>","protected":false},"excerpt":{"rendered":"<p>\u00dclevaade Mitmes BAS-IP intercom seadmes on avastatud probleem. R\u00fcndaja saab seadme veebiliidesele v\u00f5i API-le ligi p\u00e4\u00e4semise teel seadme RTSP-serveri ja SIP-konto paroolid. BAS-IP klassifitseerib need haavatavused keskmiseks ja soovitab klientidel uuendada m\u00f5jutatud BAS-IP mudelid viimasele p\u00fcsivara versioonile. Riskide hindamine V\u00f5imalik vastane vajab haavatavuste \u00e4rakasutamiseks v\u00f5rgujuurdep\u00e4\u00e4su seadmele. Vastase jaoks on seadme edukaks kahjustamiseks vaja volitusi. Risk [&hellip;]<\/p>","protected":false},"author":3,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"inline_featured_image":false,"footnotes":""},"class_list":["post-122070","page","type-page","status-publish","hentry"],"acf":[],"_links":{"self":[{"href":"https:\/\/bas-ip.com\/et\/wp-json\/wp\/v2\/pages\/122070","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/bas-ip.com\/et\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/bas-ip.com\/et\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/bas-ip.com\/et\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/bas-ip.com\/et\/wp-json\/wp\/v2\/comments?post=122070"}],"version-history":[{"count":1,"href":"https:\/\/bas-ip.com\/et\/wp-json\/wp\/v2\/pages\/122070\/revisions"}],"predecessor-version":[{"id":122071,"href":"https:\/\/bas-ip.com\/et\/wp-json\/wp\/v2\/pages\/122070\/revisions\/122071"}],"wp:attachment":[{"href":"https:\/\/bas-ip.com\/et\/wp-json\/wp\/v2\/media?parent=122070"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}