Hikvision · Hikvision Dvr Ds-7204 · CVE-2014-4880
**Name of the Vulnerable Software and Affected Versions**
Hikvision DVR DS-7204 Firmware version 2.2.10 build 131009
Other Hikvision models and versions (affected versions not specified)
**Description**
The issue allows remote attackers to execute arbitrary code via an RTSP PLAY request with a long `Authorization` header.
**Recommendations**
For Hikvision DVR DS-7204 Firmware version 2.2.10 build 131009: At the moment, there is no information about a newer version that contains a fix for this vulnerability.
For other affected Hikvision models and versions: At the moment, there is no information about a newer version that contains a fix for this vulnerability.