216.73.217.172

CVE-2026-21638

· Published 08/01/2026 17:15 · Modified 08/01/2026 18:08

Labels: CVE-2026-21638 2026-01-08CVE-2026-21638CWE-77[email protected]

Essential information

Published
08/01/2026 17:15
Modified
08/01/2026 18:08
Author
Creator
CVSS
8.8 HIGH (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS metrics

Description

A malicious actor in Wi-Fi range of the affected product could leverage a vulnerability in the airMAX Wireless Protocol to achieve a remote code execution (RCE) within the affected product. Affected Products: UBB-XG (Version 1.2.2 and earlier) UDB-Pro/UDB-Pro-Sector (Version 1.4.1 and earlier) UBB (Version 3.1.5 and earlier) Mitigation: Update your UBB-XG to Version 1.2.3 or later. Update your UDB-Pro/UDB-Pro-Sector to Version 1.4.2 or later. Update your UBB to Version 3.1.7 or later.

NVD status

Status
Undergoing Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
airmax / ubb-xg cpe:2.3:a:airmax:ubb-xg:<1.2.2>*:*:*:*:*:*:*
airmax / udb-pro cpe:2.3:a:airmax:udb-pro:*:<1.4.1>*:*:*:*:*:*
airmax / udb-pro-sector cpe:2.3:a:airmax:udb-pro-sector:*:<1.4.1>*:*:*:*:*:*
airmax / ubb cpe:2.3:a:airmax:ubb:<3.1.5>*:*:*:*:*:*:*

References