CVE-2026-6274
Improper Authentication in Redline WR3200
Publication date: 2026-06-05
Last updated on: 2026-06-05
Assigner: Computer Emergency Response Team of the Republic of Turkey
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| dts_electronics_industry_and_trade_ltd_co | redline_wr3200 | From 7.1.3 (inc) to 7.1.8 (exc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-306 | The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources. |
| CWE-287 | When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct. |
| CWE-1390 | The product uses an authentication mechanism to restrict access to specific users or identities, but the mechanism does not sufficiently prove that the claimed identity is correct. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is an improper authentication issue in the Redline WR3200 device by DTS Electronics Industry and Trade Ltd. Co. It involves missing or weak authentication for critical functions, allowing unauthorized access to functionality that should be protected by Access Control Lists (ACLs).
How can this vulnerability impact me? :
Exploitation of this vulnerability can lead to unauthorized users gaining full access to critical functions of the Redline WR3200 device without proper authentication. This can result in complete compromise of confidentiality, integrity, and availability of the affected system.