How severe is CVE-2026-21638?

CVE-2026-21638 has a CVSS v3 score of 8.8 (HIGH).

CVE-2026-21638

8.8HIGH

A malicious actor in Wi-Fi range of the affected product could leverage a vulnerability in the airMAX Wireless Protocol to achieve a remote code execution (RCE) within the affected product. Affec

Publicado: 1/8/2026Actualizado: 1/14/2026

Descripción

A malicious actor in Wi-Fi range of the affected product could leverage a vulnerability in the airMAX Wireless Protocol to achieve a remote code execution (RCE) within the affected product. Affected Products: UBB-XG (Version 1.2.2 and earlier) UDB-Pro/UDB-Pro-Sector (Version 1.4.1 and earlier) UBB (Version 3.1.5 and earlier) Mitigation: Update your UBB-XG to Version 1.2.3 or later. Update your UDB-Pro/UDB-Pro-Sector to Version 1.4.2 or later. Update your UBB to Version 3.1.7 or later.

Análisis IAImpulsado por IA

Productos Afectados

uiubb-xg_firmware

uiubb-xg

uiudb-pro_firmware

uiudb-pro

uiudb-pro-sector_firmware

uiudb-pro-sector

uiubb_firmware

uiubb

Referencias

https://community.ui.com/releases/Security-Advisory-Bulletin-060-060/cde18da7-2bc4-41bb-a9cc-48a4a4c479c1
Vendor Advisory