Search
Search Menu

Security Advisory for KCodes NetUSB Vulnerabilities

Security Advisory
Updated 03-04-2022 07:20:02 AM 49041

Associated CVE ID: CVE-2021-45608

As vulnerabilities related to KCodes NetUSB were disclosed, TP-Link has developed and released firmware fixes for NetUSB-protocol vulnerabilities on the following product models:

Model

Version

Fixed in Firmware Version

Archer C7(US/EU/RU)

V5

Archer C7(US/EU/RU)_V5_211210

Archer C7(US/RU/KR)

V4

Archer C7(US/RU/KR)_V4_211231

Archer C1200(US/EU/CA)

V1

Archer C1200(US/EU/CA)_V1_220114

Archer C1200(JP/KR/US/RU)

V2

ArcherC1200(JP/KR/US/RU)_V2_220114

Archer C1200(EU)

V2

Archer C1200(EU)_V2_211219

Archer C1200(US)

V3

Archer C1200(US)_V3_211219

Archer C5400X

V1

Archer C5400X_V1_211222

ArcherC2300(US/EU/KRJP/CA)

V1

ArcherC2300(US/EU/KRJP/CA)_V1_220114

Archer C4000

V2

Archer C4000_V2_220114

Archer C59(EU/RU/US)

V2

Archer C59(EU/RU/US)_V2_220117

Archer C59(US)

V3

Archer C59(US)_V3_220113

Archer C3150(US)

V2

Archer C3150(US)_V2_220117

TL-MR3420(EU)

V5

TL-MR3420(EU)_V5_211220

TL-WR842N(RU)

V5

TL-WR842N(RU)_V5_211215

Archer VR2800(EU)

V1

Archer VR2800(EU)_V1.0_220107

Archer VR2800V(DE)

V1

Archer VR2800(DE)_V1.0_220110

Archer VR600v(EU)

V2

Archer_VR600v(EU)_V2_220112

Archer VR600V(DE)

V2

Archer VR600v(DE)_V2_220113

Archer VR400(EU)

V2

Archer VR400(EU)_V2_220113

Archer VR900v(DE)

V2

Archer VR900v(DE)_V2_220118

Search for your product model, then go to its download page.Go to TP-Link’s download center https://www.tp-link/support/download.To download the latest firmware: TP-Link strongly recommends that you download and update to the latest firmware for these product models as soon as possible.

  1. Choose the right hardware version and click Firmware.
  2. Follow the page instructions, and select the correct firmware version to download and install the new firmware.

Disclaimer

The KCodes NetUSB-protocol vulnerabilities will persist if you do not take every recommended action. TP-Link cannot bear any responsibility for consequences that could have been avoided by following the recommendations in this statement.

Revision History

2022-01-11 Published advisory

2022-01-12 Updated CVE ID

2022-01-18 Updated Firmware List

TP-Link will update this advisory as necessary when more information becomes available.

Is this faq useful?

Your feedback helps improve this site.

Community

TP-Link Community

Still need help? Search for answers, ask questions, and get help from TP-Link experts and other users around the world.

Visit the Community >

From United States?

Get products, events and services for your region.

GO Other Option

This website uses cookies to improve website navigation, analyze online activities and have the best possible user experience on our website. You can object to the use of cookies at any time. You can find more information in our privacy policy . Don’t show again

This website uses cookies to improve website navigation, analyze online activities and have the best possible user experience on our website. You can object to the use of cookies at any time. You can find more information in our privacy policy . Don’t show again

Basic Cookies

These cookies are necessary for the website to function and cannot be deactivated in your systems.

TP-Link

accepted_local_switcher, tp_privacy_base, tp_privacy_marketing, tp_smb-select-product_scence, tp_smb-select-product_scenceSimple, tp_smb-select-product_userChoice, tp_smb-select-product_userChoiceSimple, tp_smb-select-product_userInfo, tp_smb-select-product_userInfoSimple, tp_top-banner, tp_popup-bottom, tp_popup-center, tp_popup-right-middle, tp_popup-right-bottom, tp_productCategoryType

Livechat

__livechat, __lc2_cid, __lc2_cst, __lc_cid, __lc_cst, CASID

Youtube

id, VISITOR_INFO1_LIVE, LOGIN_INFO, SIDCC, SAPISID, APISID, SSID, SID, YSC, __Secure-1PSID, __Secure-1PAPISID, __Secure-1PSIDCC, __Secure-3PSID, __Secure-3PAPISID, __Secure-3PSIDCC, 1P_JAR, AEC, NID, OTZ

Analysis and Marketing Cookies

Analysis cookies enable us to analyze your activities on our website in order to improve and adapt the functionality of our website.

The marketing cookies can be set through our website by our advertising partners in order to create a profile of your interests and to show you relevant advertisements on other websites.

Google Analytics & Google Tag Manager

_gid, _ga_<container-id>, _ga, _gat_gtag_<container-id>

Google Ads & DoubleClick

test_cookie, _gcl_au

Meta Pixel

_fbp

Crazy Egg

cebsp_, _ce.s, _ce.clock_data, _ce.clock_event, cebs

Hotjar

OptanonConsent, _sctr, _cs_s, _hjFirstSeen, _hjAbsoluteSessionInProgress, _hjSessionUser_14, _fbp, ajs_anonymous_id, _hjSessionUser_<hotjar-id>, _uetsid, _schn, _uetvid, NEXT_LOCALE, _hjSession_14, _hjid, _cs_c, _scid, _hjAbsoluteSessionInProgress, _cs_id, _gcl_au, _ga, _gid, _hjIncludedInPageviewSample, _hjSession_<hotjar-id>, _hjIncludedInSessionSample_<hotjar-id>

Linkedin

lidc, AnalyticsSyncHistory, UserMatchHistory, bcookie, li_sugr, ln_or