CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2014-4880

Buffer overflow in Hikvision DVR DS-7204 Firmware 2.2.10 build 131009, and other models and versions, allows remote attackers to execute arbitrary code via an RTSP PLAY request with a long Authorization header.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.735

EPSS Ranking 98.7%

CVSS Severity

CVSS v2 Score 7.5

References

http://packetstormsecurity.com/files/129187/Hikvision-DVR-RTSP-Request-Remote-Code-Execution.html
http://www.exploit-db.com/exploits/35356
http://packetstormsecurity.com/files/129187/Hikvision-DVR-RTSP-Request-Remote-Code-Execution.html
http://www.exploit-db.com/exploits/35356

Products affected by CVE-2014-4880

Hikvision » Dvr Ds-7204 » Version: N/A

cpe:2.3:h:hikvision:dvr_ds-7204:-
Hikvision » Dvr Ds-7204 Firmware » Version: 2.2.10

cpe:2.3:o:hikvision:dvr_ds-7204_firmware:2.2.10

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-4880

Products

Pricing

Contact Us