What is the severity of CVE-2021-3125?

CVE-2021-3125 is considered a moderate severity vulnerability due to the potential for excessive network traffic.

How do I fix CVE-2021-3125?

To fix CVE-2021-3125, update your TP-Link device firmware to the latest version that addresses the routing loop issue.

Which TP-Link devices are affected by CVE-2021-3125?

Affected devices include TP-Link TL-XDR3230, TL-XDR1850, TL-XDR1860, TL-XDR3250, TL-XDR6060 Turbo, TL-XDR5430, and possibly others.

What happens if CVE-2021-3125 is exploited?

Exploitation of CVE-2021-3125 can lead to routing loops that generate excessive network traffic affecting device performance.

Is CVE-2021-3125 related to IPv6 usage?

Yes, CVE-2021-3125 specifically occurs when IPv6 is in use on the affected TP-Link devices.

Vulnerability/
CVE-2021-3125

high

7.5

CWE

834

12/4/2021

3/8/2024

CVE-2021-3125

First published: Mon Apr 12 2021(Updated: )

In TP-Link TL-XDR3230 < 1.0.12, TL-XDR1850 < 1.0.9, TL-XDR1860 < 1.0.14, TL-XDR3250 < 1.0.2, TL-XDR6060 Turbo < 1.1.8, TL-XDR5430 < 1.0.11, and possibly others, when IPv6 is used, a routing loop can occur that generates excessive network traffic between an affected device and its upstream ISP's router. This occurs when a link prefix route points to a point-to-point link, a destination IPv6 address belongs to the prefix and is not a local IPv6 address, and a router advertisement is received with at least one global unique IPv6 prefix for which the on-link flag is set.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Tp-link Tl-xdr3230 Firmware	<1.0.12
TP-Link TL-XDR3230
Tp-link Tl-xdr5430 Firmware	<1.0.11
Tp-link Tl-xdr5430
Tp-link Tl-xdr3250 Firmware	<1.0.2
Tp-link Tl-xdr3250
Tp-link Tl-xdr1860 Firmware	<1.0.14
Tp-link Tl-xdr1860
Tp-link Tl-xdr1850 Firmware	<1.0.9
Tp-link Tl-xdr1850
Tp-link Tl-xdr6060 Firmware	<1.1.8
Tp-link Tl-xdr6060

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2021-3125?
CVE-2021-3125 is considered a moderate severity vulnerability due to the potential for excessive network traffic.
How do I fix CVE-2021-3125?
To fix CVE-2021-3125, update your TP-Link device firmware to the latest version that addresses the routing loop issue.
Which TP-Link devices are affected by CVE-2021-3125?
Affected devices include TP-Link TL-XDR3230, TL-XDR1850, TL-XDR1860, TL-XDR3250, TL-XDR6060 Turbo, TL-XDR5430, and possibly others.
What happens if CVE-2021-3125 is exploited?
Exploitation of CVE-2021-3125 can lead to routing loops that generate excessive network traffic affecting device performance.
Is CVE-2021-3125 related to IPv6 usage?
Yes, CVE-2021-3125 specifically occurs when IPv6 is in use on the affected TP-Link devices.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.