CVE-2014-4880

Hikvision DVR DS-7204 Firmware 2.2.10 build 131009 - Remote Code Execution via RTSP PLAY Authorization Header

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2014-4880. PoCs published by Metasploit, including Metasploit module exploits/linux/misc/hikvision_rtsp_bof.

AI-analyzed exploit summary This Metasploit module exploits a buffer overflow in Hikvision DVR RTSP request parsing to achieve remote code execution. It uses a ROP chain to bypass stack protections and execute arbitrary payloads on vulnerable devices.

Description

Buffer overflow in Hikvision DVR DS-7204 Firmware 2.2.10 build 131009, and other models and versions, allows remote attackers to execute arbitrary code via an RTSP PLAY request with a long Authorization header.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotelinux
https://www.exploit-db.com/exploits/35356

This Metasploit module exploits a buffer overflow in Hikvision DVR RTSP request parsing to achieve remote code execution. It uses a ROP chain to bypass stack protections and execute arbitrary payloads on vulnerable devices.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Hikvision DVR DS-7204 Firmware V2.2.10 build 131009
No auth needed
Prerequisites: Network access to the RTSP service (port 554) · Vulnerable Hikvision DVR device
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC NORMAL
rubypoclinux
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/misc/hikvision_rtsp_bof.rb

This Metasploit module exploits a buffer overflow in Hikvision DVR RTSP request parsing (CVE-2014-4880) to achieve remote code execution on vulnerable devices. It uses ROP techniques to bypass stack randomization and execute payloads on ARMLE architecture.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Hikvision DVR DS-7204 Firmware V2.2.10 build 131009
No auth needed
Prerequisites: Network access to RTSP port (554) · Vulnerable Hikvision DVR device
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Scores

EPSS 0.7208
EPSS Percentile 99.4%

Details

CWE
CWE-119
Status published
Products (1)
hikvision/dvr_ds-7204_firmware 2.2.10 build_131009
Published Dec 08, 2014
Tracked Since Feb 18, 2026