CVE-2019-13268

Name of the Vulnerable Software and Affected Versions TP-Link Archer C3200 version 1 TP-Link Archer C2 version 1

Description The issue is related to insufficient compartmentalization between a host network and a guest network established by the same device. These devices forward ARP requests between the host and guest networks, which can be used as a direct covert channel. An attacker can exploit this by sending an ARP request to an arbitrary computer on the network. The data payload can be either the lower 8 bits of the IP address or the entire 32 bits, depending on the router's restriction of ARP forwarding.

Recommendations For TP-Link Archer C3200 version 1: Consider restricting ARP forwarding to requests destined for the network's subnet mask to minimize the risk of exploitation. For TP-Link Archer C2 version 1: Consider restricting ARP forwarding to requests destined for the network's subnet mask to minimize the risk of exploitation. As a temporary workaround, consider disabling the forwarding of ARP requests between the host and guest networks until a patch is available.