CVE-2021-3128

Name of the Vulnerable Software and Affected Versions ASUS RT-AX3000 versions prior to 3.0.0.4.386.42095 ASUS ZenWiFi AX (XT8) versions prior to 3.0.0.4.386.42095 ASUS RT-AX88U versions prior to 9.0.0.4.386.41994

Description A routing loop can occur when IPv6 is used, generating excessive network traffic between an affected device and its upstream ISP's router. This happens when a link prefix route points to a point-to-point link, a destination IPv6 address belongs to the prefix and is not a local IPv6 address, and a router advertisement is received with at least one global unique IPv6 prefix for which the on-link flag is set.

Recommendations For ASUS RT-AX3000 versions prior to 3.0.0.4.386.42095, update the firmware to version 3.0.0.4.386.42095 or later. For ASUS ZenWiFi AX (XT8) versions prior to 3.0.0.4.386.42095, update the firmware to version 3.0.0.4.386.42095 or later. For ASUS RT-AX88U versions prior to 9.0.0.4.386.41994, update the firmware to version 9.0.0.4.386.41994 or later.