Description

A malicious actor in Wi-Fi range of the affected product could leverage a vulnerability in the airMAX Wireless Protocol to achieve a remote code execution (RCE) within the affected product. Affected Products: airMAX AC (Version 8.7.20 and earlier) airMAX M (Version 6.3.22 and earlier) airFiber AF60-XG (Version 1.2.2 and earlier) airFiber AF60 (Version 2.6.7 and earlier) Mitigation: Update your airMAX AC to Version 8.7.21 or later. Update your airMAX M to Version 6.3.24 or later. Update your airFiber AF60-XG to Version 1.2.3 or later. Update your airFiber AF60 to Version 2.6.8 or later.

INFO

Published Date :

2026-01-08T16:14:22.626Z

Last Modified :

2026-01-08T17:21:53.724Z

Source :

hackerone
AFFECTED PRODUCTS

The following products are affected by CVE-2026-21639 vulnerability.

Vendors Products
Ubiquiti
  • Airfiber Af60
  • Airfiber Af60 Xg
  • Airmax Ac
  • Airmax M
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-21639.

URL Resource
https://community.ui.com/releases/Security-Advisory-Bulletin-061-061/1e4fe5f8-29c7-4a7d-a518-01b1537983ba cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact