In TP-Link TL-XDR3230 < 1.0.12, TL-XDR1850 < 1.0.9, TL-XDR1860 < 1.0.14, TL-XDR3250 < 1.0.2, TL-XDR6060 Turbo < 1.1.8, TL-XDR5430 < 1.0.11, and possibly others, when IPv6 is used, a routing loop can occur that generates excessive network traffic between an affected device and its upstream ISP's router. This occurs when a link prefix route points to a point-to-point link, a destination IPv6 address belongs to the prefix and is not a local IPv6 address, and a router advertisement is received with at least one global unique IPv6 prefix for which the on-link flag is set.
References
Link | Resource |
---|---|
https://service.tp-link.com.cn/detail_download_8719.html | Vendor Advisory |
https://service.tp-link.com.cn/detail_download_8720.html | Vendor Advisory |
https://service.tp-link.com.cn/detail_download_8722.html | Vendor Advisory |
https://service.tp-link.com.cn/detail_download_8723.html | Vendor Advisory |
https://service.tp-link.com.cn/detail_download_8724.html | Vendor Advisory |
https://service.tp-link.com.cn/detail_download_8725.html | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
History
21 Apr 2021, 16:09
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-834 | |
CVSS |
v2 : v3 : |
v2 : 4.3
v3 : 7.5 |
CPE | cpe:2.3:o:tp-link:tl-xdr1850_firmware:*:*:*:*:*:easy_exhibition:*:* cpe:2.3:o:tp-link:tl-xdr3250_firmware:*:*:*:*:*:easy_exhibition:*:* cpe:2.3:h:tp-link:tl-xdr5430:-:*:*:*:*:*:*:* cpe:2.3:o:tp-link:tl-xdr3230_firmware:*:*:*:*:*:easy_exhibition_turbo:*:* cpe:2.3:h:tp-link:tl-xdr1850:-:*:*:*:*:*:*:* cpe:2.3:h:tp-link:tl-xdr3230:-:*:*:*:*:*:*:* cpe:2.3:h:tp-link:tl-xdr6060:-:*:*:*:*:*:*:* cpe:2.3:h:tp-link:tl-xdr3250:-:*:*:*:*:*:*:* cpe:2.3:o:tp-link:tl-xdr5430_firmware:*:*:*:*:*:easy_exhibition:*:* cpe:2.3:h:tp-link:tl-xdr1860:-:*:*:*:*:*:*:* cpe:2.3:o:tp-link:tl-xdr1860_firmware:*:*:*:*:*:easy_exhibition:*:* cpe:2.3:o:tp-link:tl-xdr6060_firmware:*:*:*:*:*:easy_exhibition:*:* |
|
References | (MISC) https://service.tp-link.com.cn/detail_download_8723.html - Vendor Advisory | |
References | (MISC) https://service.tp-link.com.cn/detail_download_8725.html - Vendor Advisory | |
References | (MISC) https://service.tp-link.com.cn/detail_download_8722.html - Vendor Advisory | |
References | (MISC) https://service.tp-link.com.cn/detail_download_8720.html - Vendor Advisory | |
References | (MISC) https://service.tp-link.com.cn/detail_download_8719.html - Vendor Advisory | |
References | (MISC) https://service.tp-link.com.cn/detail_download_8724.html - Vendor Advisory |
12 Apr 2021, 21:15
Type | Values Removed | Values Added |
---|---|---|
Summary | In TP-Link TL-XDR3230 < 1.0.12, TL-XDR1850 < 1.0.9, TL-XDR1860 < 1.0.14, TL-XDR3250 < 1.0.2, TL-XDR6060 Turbo < 1.1.8, TL-XDR5430 < 1.0.11, and possibly others, when IPv6 is used, a routing loop can occur that generates excessive network traffic between an affected device and its upstream ISP's router. This occurs when a link prefix route points to a point-to-point link, a destination IPv6 address belongs to the prefix and is not a local IPv6 address, and a router advertisement is received with at least one global unique IPv6 prefix for which the on-link flag is set. |
12 Apr 2021, 19:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-04-12 19:15
Updated : 2023-12-10 13:55
NVD link : CVE-2021-3125
Mitre link : CVE-2021-3125
CVE.ORG link : CVE-2021-3125
JSON object : View
Products Affected
tp-link
- tl-xdr5430_firmware
- tl-xdr3250_firmware
- tl-xdr5430
- tl-xdr6060_firmware
- tl-xdr6060
- tl-xdr1850
- tl-xdr3250
- tl-xdr1860_firmware
- tl-xdr1850_firmware
- tl-xdr3230_firmware
- tl-xdr1860
- tl-xdr3230
CWE
CWE-834
Excessive Iteration