CVE-2021-3125

Name of the Vulnerable Software and Affected Versions TP-Link TL-XDR3230 versions prior to 1.0.12 TP-Link TL-XDR1850 versions prior to 1.0.9 TP-Link TL-XDR1860 versions prior to 1.0.14 TP-Link TL-XDR3250 versions prior to 1.0.2 TP-Link TL-XDR6060 Turbo versions prior to 1.1.8 TP-Link TL-XDR5430 versions prior to 1.0.11

Description A routing loop can occur when IPv6 is used, generating excessive network traffic between an affected device and its upstream ISP's router. This happens when a link prefix route points to a point-to-point link, a destination IPv6 address belongs to the prefix and is not a local IPv6 address, and a router advertisement is received with at least one global unique IPv6 prefix for which the on-link flag is set.

Recommendations For TP-Link TL-XDR3230 versions prior to 1.0.12, update to version 1.0.12 or later. For TP-Link TL-XDR1850 versions prior to 1.0.9, update to version 1.0.9 or later. For TP-Link TL-XDR1860 versions prior to 1.0.14, update to version 1.0.14 or later. For TP-Link TL-XDR3250 versions prior to 1.0.2, update to version 1.0.2 or later. For TP-Link TL-XDR6060 Turbo versions prior to 1.1.8, update to version 1.1.8 or later. For TP-Link TL-XDR5430 versions prior to 1.0.11, update to version 1.0.11 or later.