{"id":122092,"date":"2024-05-15T14:56:42","date_gmt":"2024-05-15T14:56:42","guid":{"rendered":"https:\/\/bas-ip.com\/?page_id=122092"},"modified":"2024-11-05T10:40:38","modified_gmt":"2024-11-05T10:40:38","slug":"bsa-000001","status":"publish","type":"page","link":"https:\/\/bas-ip.com\/lv\/bsa-000001\/","title":{"rendered":"BSA-000001"},"content":{"rendered":"<h2 class=\"wp-block-heading\" id=\"bsa-000001\">P\u0101rskats<\/h2>\n\n\n\n<p>Vair\u0101k\u0101s BAS-IP interkomu ier\u012bc\u0113s ir atkl\u0101ta probl\u0113ma. Piek\u013c\u016bstot ier\u012bces t\u012bmek\u013ca saskarnei vai API, uzbruc\u0113js var ieg\u016bt ier\u012bces RTSP servera un SIP konta paroles.<\/p>\n\n\n\n<p>BAS-IP klasific\u0113 \u0161\u012bs ievainojam\u012bbas k\u0101 vid\u0113jas pak\u0101pes un iesaka klientiem atjaunin\u0101t skartos BAS-IP mode\u013cus uz jaun\u0101ko programmaparat\u016bras versiju.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"risk-assessment\">Riska nov\u0113rt\u0113jums<\/h2>\n\n\n\n<p>Potenci\u0101lajam pretiniekam ir nepiecie\u0161ama t\u012bkla piek\u013cuve ier\u012bcei, lai izmantotu \u0161\u012bs ievainojam\u012bbas. Pretiniekam ir nepiecie\u0161ami akredit\u0101cijas dati, lai sekm\u012bgi kompromit\u0113tu ier\u012bci. Risks ir atkar\u012bgs no t\u0101, cik apdraud\u0113ta ir ier\u012bce. Lielam riskam ir pak\u013cauta ier\u012bce, kas saskaras ar internetu (piem\u0113ram, ir pak\u013cauta, izmantojot mar\u0161rut\u0113t\u0101ja port-forward). Produktiem, kas izvietoti aizsarg\u0101t\u0101 lok\u0101laj\u0101 t\u012bkl\u0101, ir zem\u0101ks risks.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"risk-mitigation\">Riska mazin\u0101\u0161ana<\/h2>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Ieteicams atjaunin\u0101t skartos mode\u013cus uz jaun\u0101ko programmaparat\u016bru.<\/li>\n\n\n\n<li>Ier\u012bces nav ieteicams pak\u013caut tie\u0161ai piek\u013cuvei internetam (port-forwarding).<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"affected-models-and-patched-firmware\">Skartie mode\u013ci un labot\u0101 programmaparat\u016bra<\/h2>\n\n\n\n<p>Ietekm\u0113to mode\u013cu saraksts:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>AV-01D<\/li>\n\n\n\n<li>AV-01MD<\/li>\n\n\n\n<li>AV-01MFD<\/li>\n\n\n\n<li>AV-01ED<\/li>\n\n\n\n<li>AV-01KD<\/li>\n\n\n\n<li>AV-01BD<\/li>\n\n\n\n<li>AV-01KBD<\/li>\n\n\n\n<li>AV-02D<\/li>\n\n\n\n<li>AV-02IDE<\/li>\n\n\n\n<li>AV-02IDR<\/li>\n\n\n\n<li>AV-02IPD<\/li>\n\n\n\n<li>AV-02FDE<\/li>\n\n\n\n<li>AV-02FDR<\/li>\n\n\n\n<li>AV-03D<\/li>\n\n\n\n<li>AV-03BD<\/li>\n\n\n\n<li>AV-04AFD<\/li>\n\n\n\n<li>AV-04ASD<\/li>\n\n\n\n<li>AV-04FD<\/li>\n\n\n\n<li>AV-04SD<\/li>\n\n\n\n<li>AV-05FD<\/li>\n\n\n\n<li>AV-05SD<\/li>\n\n\n\n<li>AA-07BD<\/li>\n\n\n\n<li>AA-07BDI<\/li>\n\n\n\n<li>BA-04BD<\/li>\n\n\n\n<li>BA-04MD<\/li>\n\n\n\n<li>BA-08BD<\/li>\n\n\n\n<li>BA-08MD<\/li>\n\n\n\n<li>BA-12BD<\/li>\n\n\n\n<li>BA-12MD<\/li>\n\n\n\n<li>CR-02BD<\/li>\n<\/ul>\n\n\n\n<p>Patched firmware versija:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>3.9.2<\/li>\n<\/ul>","protected":false},"excerpt":{"rendered":"<p>P\u0101rskats Vair\u0101k\u0101s BAS-IP interkomu ier\u012bc\u0113s ir atkl\u0101ta probl\u0113ma. Piek\u013c\u016bstot ier\u012bces t\u012bmek\u013ca saskarnei vai API, uzbruc\u0113js var ieg\u016bt ier\u012bces RTSP servera un SIP konta paroles. BAS-IP klasific\u0113 \u0161\u012bs ievainojam\u012bbas k\u0101 vid\u0113jas pak\u0101pes un iesaka klientiem atjaunin\u0101t skartos BAS-IP mode\u013cus uz jaun\u0101ko programmaparat\u016bras versiju. Riska nov\u0113rt\u0113jums Potenci\u0101lajam pretiniekam ir nepiecie\u0161ama t\u012bkla piek\u013cuve ier\u012bcei, lai izmantotu \u0161\u012bs ievainojam\u012bbas. [&hellip;]<\/p>","protected":false},"author":3,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"inline_featured_image":false,"footnotes":""},"class_list":["post-122092","page","type-page","status-publish","hentry"],"acf":[],"_links":{"self":[{"href":"https:\/\/bas-ip.com\/lv\/wp-json\/wp\/v2\/pages\/122092","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/bas-ip.com\/lv\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/bas-ip.com\/lv\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/bas-ip.com\/lv\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/bas-ip.com\/lv\/wp-json\/wp\/v2\/comments?post=122092"}],"version-history":[{"count":1,"href":"https:\/\/bas-ip.com\/lv\/wp-json\/wp\/v2\/pages\/122092\/revisions"}],"predecessor-version":[{"id":122093,"href":"https:\/\/bas-ip.com\/lv\/wp-json\/wp\/v2\/pages\/122092\/revisions\/122093"}],"wp:attachment":[{"href":"https:\/\/bas-ip.com\/lv\/wp-json\/wp\/v2\/media?parent=122092"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}