7.5
CWE
834
Advisory Published
Updated

CVE-2021-3128

First published: Mon Apr 12 2021(Updated: )

In ASUS RT-AX3000, ZenWiFi AX (XT8), RT-AX88U, and other ASUS routers with firmware < 3.0.0.4.386.42095 or < 9.0.0.4.386.41994, when IPv6 is used, a routing loop can occur that generates excessive network traffic between an affected device and its upstream ISP's router. This occurs when a link prefix route points to a point-to-point link, a destination IPv6 address belongs to the prefix and is not a local IPv6 address, and a router advertisement is received with at least one global unique IPv6 prefix for which the on-link flag is set.

Credit: cve@mitre.org

Affected SoftwareAffected VersionHow to fix
Asus Zenwifi Ax \(xt8\) Firmware<3.0.0.4.386.42095
Asus Zenwifi Ax \(xt8\)
Asus Zenwifi Ax \(xt8\) Firmware<9.0.0.4.386.41994
ASUS RT-AX3000 firmware<3.0.0.4.386.42095
ASUS RT-AX3000
ASUS RT-AX3000 firmware<9.0.0.4.386.41994
Asus Rt-ax55 Firmware<3.0.0.4.386.42095
ASUS RT-AX55
Asus Rt-ax55 Firmware<9.0.0.4.386.41994
Asus Rt-ax56u Firmware<3.0.0.4.386.42095
ASUS RT-AX56U
Asus Rt-ax56u Firmware<9.0.0.4.386.41994
Asus Rt-ax58u Firmware<3.0.0.4.386.42095
Asus Rt-ax58u
Asus Rt-ax58u Firmware<9.0.0.4.386.41994
Asus Rt-ax68u Firmware<3.0.0.4.386.42095
Asus Rt-ax68u
Asus Rt-ax68u Firmware<9.0.0.4.386.41994
Asus Rt-ax82u Firmware<3.0.0.4.386.42095
Asus RT-AX82U
Asus Rt-ax82u Firmware<9.0.0.4.386.41994
Asus Rt-ax86u Firmware<3.0.0.4.386.42095
ASUS RT-AX86U
Asus Rt-ax86u Firmware<9.0.0.4.386.41994
Asus Rt-ax88u Firmware<3.0.0.4.386.42095
ASUS RT-AX88U
Asus Rt-ax88u Firmware<9.0.0.4.386.41994
Asus Rt-ac66u B1 Firmware<3.0.0.4.386.42095
ASUS RT-AC66U B1
Asus Rt-ac66u B1 Firmware<9.0.0.4.386.41994
Asus Rt-ac1750 B1 Firmware<3.0.0.4.386.42095
Asus Rt-ac1750 B1
Asus Rt-ac1750 B1 Firmware<9.0.0.4.386.41994
Asus Rt-ac1900 Firmware<3.0.0.4.386.42095
Asus Rt-ac1900
Asus Rt-ac1900 Firmware<9.0.0.4.386.41994
Asus Rt-ac1900p Firmware<3.0.0.4.386.42095
ASUS RT-AC1900P
Asus Rt-ac1900p Firmware<9.0.0.4.386.41994
Asus Rt-ac1900u Firmware<3.0.0.4.386.42095
Asus Rt-ac1900u
Asus Rt-ac1900u Firmware<9.0.0.4.386.41994
Asus Rt-ac2900 Firmware<3.0.0.4.386.42095
Asus Rt-ac2900
Asus Rt-ac2900 Firmware<9.0.0.4.386.41994
Asus Rt-ac3100 Firmware<3.0.0.4.386.42095
Asus Rt-ac3100
Asus Rt-ac3100 Firmware<9.0.0.4.386.41994
Asus Rt-ac5300 Firmware<3.0.0.4.386.42095
Asus Rt-ac5300
Asus Rt-ac5300 Firmware<9.0.0.4.386.41994
Asus Rt-ac58u Firmware<3.0.0.4.386.42095
ASUS RT-AC58U
Asus Rt-ac58u Firmware<9.0.0.4.386.41994
Asus Rt-ac65u Firmware<3.0.0.4.386.42095
Asus Rt-ac65u
Asus Rt-ac65u Firmware<9.0.0.4.386.41994
Asus Rt-ac68p Firmware<3.0.0.4.386.42095
Asus Rt-ac68p
Asus Rt-ac68p Firmware<9.0.0.4.386.41994
Asus Rt-ac68r Firmware<3.0.0.4.386.42095
Asus Rt-ac68r
Asus Rt-ac68r Firmware<9.0.0.4.386.41994
Asus Rt-ac68rw Firmware<3.0.0.4.386.42095
Asus Rt-ac68rw
Asus Rt-ac68rw Firmware<9.0.0.4.386.41994
ASUS RT-AC68U Firmware<3.0.0.4.386.42095
ASUS RT-AC68U
ASUS RT-AC68U Firmware<9.0.0.4.386.41994
Asus Rt-ac68w Firmware<3.0.0.4.386.42095
Asus Rt-ac68w
Asus Rt-ac68w Firmware<9.0.0.4.386.41994
Asus Rt-ac85u Firmware<3.0.0.4.386.42095
Asus Rt-ac85u
Asus Rt-ac85u Firmware<9.0.0.4.386.41994
Asus Rt-ac86u Firmware<3.0.0.4.386.42095
ASUS RT-AC86U
Asus Rt-ac86u Firmware<9.0.0.4.386.41994
Asus Rt-ac88u Firmware<3.0.0.4.386.42095
Asus Rt-ac88u
Asus Rt-ac88u Firmware<9.0.0.4.386.41994

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Reference Links

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203