CVE-2025-14747 is a denial of service vulnerability identified in the RTSP Service component of Ningyuanda TC155 firmware version 57.0.2.0. The vulnerability arises from an unspecified function within the RTSP service that, when manipulated by an attacker on the same local network, can cause the device or service to crash or become unresponsive, effectively resulting in a denial of service condition. The attack vector requires local network access, meaning the attacker must be on the same subnet or have network-level access to the device. No privileges, authentication, or user interaction are necessary to exploit this vulnerability, which increases its risk within trusted internal networks. The CVSS 4.0 base score is 5.3, reflecting a medium severity level primarily due to the limited attack vector (local network) and the impact being restricted to availability. The vendor Ningyuanda has not issued any patches or responded to disclosure attempts, leaving affected devices exposed. The exploit details have been made public, increasing the likelihood of potential exploitation, although no active exploitation has been reported to date. The vulnerability could disrupt services relying on the RTSP protocol, commonly used for streaming video and audio, impacting surveillance, monitoring, or communication systems that utilize the TC155 device. Since the affected function is unknown, detailed technical mitigation is challenging, but network-level controls and monitoring are critical.

For European organizations, the primary impact of CVE-2025-14747 is the potential disruption of services relying on Ningyuanda TC155 devices, particularly those using RTSP streaming for surveillance, security monitoring, or communication. Denial of service conditions could lead to temporary loss of video feeds or interruption of critical monitoring systems, affecting operational continuity and situational awareness. This may have downstream effects on physical security, safety monitoring, and compliance with regulatory requirements for surveillance in sectors such as transportation, utilities, and public safety. The requirement for local network access limits remote exploitation risk but increases the importance of internal network security and segmentation. Organizations with large deployments of Ningyuanda TC155 devices or those in critical infrastructure sectors are at higher risk. The lack of vendor response and patches prolongs exposure, necessitating proactive mitigation. Additionally, public disclosure of the exploit code increases the risk of opportunistic attacks by insiders or lateral movement attackers within compromised networks.

1. Implement strict network segmentation to isolate Ningyuanda TC155 devices from general user networks, limiting local network access to trusted administrators and systems only. 2. Monitor RTSP traffic for unusual patterns or malformed requests that could indicate exploitation attempts. 3. Employ network access control (NAC) solutions to restrict which devices can communicate with the TC155 units. 4. Use firewall rules to limit RTSP service access to known IP addresses and subnets. 5. Regularly audit and update internal network security policies to reduce the risk of unauthorized local network access. 6. Consider deploying intrusion detection/prevention systems (IDS/IPS) tuned to detect anomalies in RTSP traffic. 7. Maintain an inventory of all Ningyuanda TC155 devices and track firmware versions to identify affected units. 8. Engage with Ningyuanda or third-party security providers for potential unofficial patches or workarounds. 9. Prepare incident response plans for denial of service events affecting RTSP services to minimize operational impact. 10. Educate internal staff about the risk of local network threats and enforce strong physical and logical access controls.