CVE-2026-6274

CRITICAL

Authentication Bypass in DTS Electronics' Redline WR3200

Title source: cna
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2026-6274. PoCs published by bugresearch.

AI-analyzed exploit summary The repository contains a functional exploit for CVE-2026-6274, an authentication bypass vulnerability in Redline WR3200 routers. The exploit leverages static cookie authentication and a missing IP verification check to change the administrative password without credentials.

Description

Improper Authentication, Missing authentication for critical function, Weak Authentication vulnerability in DTS Electronics Industry and Trade Ltd. Co. Redline WR3200 allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Redline WR3200: from 7.1.3 before 7.1.8.

Exploits (1)

nomisec WORKING POC
by bugresearch · poc
https://github.com/bugresearch/CVE-2026-6274

The repository contains a functional exploit for CVE-2026-6274, an authentication bypass vulnerability in Redline WR3200 routers. The exploit leverages static cookie authentication and a missing IP verification check to change the administrative password without credentials.

Classification
Working Poc 95%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: Redline WR3200 (firmware prior to v7.1.8)
No auth needed
Prerequisites: target IP address · network access to the router
devstral-2 · analyzed Jun 05, 2026 Full analysis →

References (2)

Core 2
Core References
Exploit, Third Party Advisory
https://github.com/bugresearch/CVE-2026-6274

Scores

CVSS v3 9.8
EPSS 0.0008
EPSS Percentile 22.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact total

Details

CWE
CWE-1390 CWE-287 CWE-306
Status published
Products (1)
DTS Electronics Industry and Trade Ltd. Co./Redline WR3200 7.1.3 - 7.1.8
Published Jun 05, 2026
Tracked Since Jun 05, 2026