{"id":122097,"date":"2024-05-15T14:56:42","date_gmt":"2024-05-15T14:56:42","guid":{"rendered":"https:\/\/bas-ip.com\/?page_id=122097"},"modified":"2024-11-05T10:43:46","modified_gmt":"2024-11-05T10:43:46","slug":"bsa-000001","status":"publish","type":"page","link":"https:\/\/bas-ip.com\/no\/bsa-000001\/","title":{"rendered":"BSA-000001"},"content":{"rendered":"<h2 class=\"wp-block-heading\" id=\"bsa-000001\">Oversikt<\/h2>\n\n\n\n<p>Det er oppdaget et problem i flere BAS-IP intercom-enheter. Ved \u00e5 f\u00e5 tilgang til enhetens webgrensesnitt eller API kan en angriper f\u00e5 tak i passord for enhetens RTSP-server og SIP-konto.<\/p>\n\n\n\n<p>BAS-IP klassifiserer disse s\u00e5rbarhetene som middels og anbefaler at kunder oppgraderer ber\u00f8rte BAS-IP-modeller til den nyeste fastvareversjonen.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"risk-assessment\">Risikovurdering<\/h2>\n\n\n\n<p>En potensiell motstander trenger nettverkstilgang til enheten for \u00e5 kunne utnytte s\u00e5rbarhetene. En motstander trenger legitimasjon for \u00e5 kunne kompromittere enheten. Risikoen avhenger av hvor eksponert enheten er. Enheter som vender mot Internett (f.eks. eksponert via port-forward p\u00e5 ruteren), er utsatt for h\u00f8y risiko. Produkter som distribueres i et beskyttet lokalt nettverk, har lavere risiko.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"risk-mitigation\">Risikoreduksjon<\/h2>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Det anbefales p\u00e5 det sterkeste \u00e5 oppgradere ber\u00f8rte modeller til den nyeste fastvaren.<\/li>\n\n\n\n<li>Det anbefales ikke \u00e5 eksponere enheter direkte mot Internett (port-forwarding).<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"affected-models-and-patched-firmware\">Ber\u00f8rte modeller og oppdatert fastvare<\/h2>\n\n\n\n<p>Liste over ber\u00f8rte modeller:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>AV-01D<\/li>\n\n\n\n<li>AV-01MD<\/li>\n\n\n\n<li>AV-01MFD<\/li>\n\n\n\n<li>AV-01ED<\/li>\n\n\n\n<li>AV-01KD<\/li>\n\n\n\n<li>AV-01BD<\/li>\n\n\n\n<li>AV-01KBD<\/li>\n\n\n\n<li>AV-02D<\/li>\n\n\n\n<li>AV-02IDE<\/li>\n\n\n\n<li>AV-02IDR<\/li>\n\n\n\n<li>AV-02IPD<\/li>\n\n\n\n<li>AV-02FDE<\/li>\n\n\n\n<li>AV-02FDR<\/li>\n\n\n\n<li>AV-03D<\/li>\n\n\n\n<li>AV-03BD<\/li>\n\n\n\n<li>AV-04AFD<\/li>\n\n\n\n<li>AV-04ASD<\/li>\n\n\n\n<li>AV-04FD<\/li>\n\n\n\n<li>AV-04SD<\/li>\n\n\n\n<li>AV-05FD<\/li>\n\n\n\n<li>AV-05SD<\/li>\n\n\n\n<li>AA-07BD<\/li>\n\n\n\n<li>AA-07BDI<\/li>\n\n\n\n<li>BA-04BD<\/li>\n\n\n\n<li>BA-04MD<\/li>\n\n\n\n<li>BA-08BD<\/li>\n\n\n\n<li>BA-08MD<\/li>\n\n\n\n<li>BA-12BD<\/li>\n\n\n\n<li>BA-12MD<\/li>\n\n\n\n<li>CR-02BD<\/li>\n<\/ul>\n\n\n\n<p>Oppdaterte fastvareversjoner:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>3.9.2<\/li>\n<\/ul>","protected":false},"excerpt":{"rendered":"<p>Oversikt Det er oppdaget et problem i flere BAS-IP intercom-enheter. Ved \u00e5 f\u00e5 tilgang til enhetens webgrensesnitt eller API kan en angriper f\u00e5 tak i passord for enhetens RTSP-server og SIP-konto. BAS-IP klassifiserer disse s\u00e5rbarhetene som middels og anbefaler at kunder oppgraderer ber\u00f8rte BAS-IP-modeller til den nyeste fastvareversjonen. Risikovurdering En potensiell motstander trenger nettverkstilgang til [&hellip;]<\/p>","protected":false},"author":3,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"inline_featured_image":false,"footnotes":""},"class_list":["post-122097","page","type-page","status-publish","hentry"],"acf":[],"_links":{"self":[{"href":"https:\/\/bas-ip.com\/no\/wp-json\/wp\/v2\/pages\/122097","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/bas-ip.com\/no\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/bas-ip.com\/no\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/bas-ip.com\/no\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/bas-ip.com\/no\/wp-json\/wp\/v2\/comments?post=122097"}],"version-history":[{"count":1,"href":"https:\/\/bas-ip.com\/no\/wp-json\/wp\/v2\/pages\/122097\/revisions"}],"predecessor-version":[{"id":122098,"href":"https:\/\/bas-ip.com\/no\/wp-json\/wp\/v2\/pages\/122097\/revisions\/122098"}],"wp:attachment":[{"href":"https:\/\/bas-ip.com\/no\/wp-json\/wp\/v2\/media?parent=122097"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}