CVE-2026-21638 - Vulnerability Details

A malicious actor in Wi-Fi range of the affected product could leverage a vulnerability in the airMAX Wireless Protocol to achieve a remote code execution (RCE) within the affected product. Affected Products: UBB-XG (Version 1.2.2 and earlier) UDB-Pro/UDB-Pro-Sector (Version 1.4.1 and earlier) UBB (Version 3.1.5 and earlier) Mitigation: Update your UBB-XG to Version 1.2.3 or later. Update your UDB-Pro/UDB-Pro-Sector to Version 1.4.2 or later. Update your UBB to Version 3.1.7 or later.

No CVSS v4.0

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact total

Vendors	Products
Ubiquiti	Ubb Ubb-xg Udb-pro Udb-pro-sector
Ui	Ubb Ubb-xg Ubb-xg Firmware Ubb Firmware Udb-pro Udb-pro-sector Udb-pro-sector Firmware Udb-pro Firmware

Configuration 1 [-]

AND

cpe:2.3:o:ui:ubb-xg_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:ui:ubb-xg:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:ui:udb-pro_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:ui:udb-pro:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:ui:udb-pro-sector_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:ui:udb-pro-sector:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:ui:ubb_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:ui:ubb:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://community.ui.com/releases/Security-Advisory-Bulletin-060-060/cde18da7-2bc4-41bb-a9cc-48a4a4c479c1

History

Wed, 14 Jan 2026 21:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Ui Ui ubb Ui ubb-xg Ui ubb-xg Firmware Ui ubb Firmware Ui udb-pro Ui udb-pro-sector Ui udb-pro-sector Firmware Ui udb-pro Firmware
CPEs		cpe:2.3:h:ui:ubb-xg:-:::::::* cpe:2.3:h:ui:ubb:-:::::::* cpe:2.3:h:ui:udb-pro-sector:-:::::::* cpe:2.3:h:ui:udb-pro:-:::::::* cpe:2.3:o:ui:ubb-xg_firmware:::::::: cpe:2.3:o:ui:ubb_firmware:::::::: cpe:2.3:o:ui:udb-pro-sector_firmware:::::::: cpe:2.3:o:ui:udb-pro_firmware::::::::
Vendors & Products		Ui Ui ubb Ui ubb-xg Ui ubb-xg Firmware Ui ubb Firmware Ui udb-pro Ui udb-pro-sector Ui udb-pro-sector Firmware Ui udb-pro Firmware

Fri, 09 Jan 2026 13:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Ubiquiti Ubiquiti ubb Ubiquiti ubb-xg Ubiquiti udb-pro Ubiquiti udb-pro-sector
Vendors & Products		Ubiquiti Ubiquiti ubb Ubiquiti ubb-xg Ubiquiti udb-pro Ubiquiti udb-pro-sector

Thu, 08 Jan 2026 18:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Thu, 08 Jan 2026 17:30:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-77

Thu, 08 Jan 2026 16:30:00 +0000

Type	Values Removed	Values Added
Description		A malicious actor in Wi-Fi range of the affected product could leverage a vulnerability in the airMAX Wireless Protocol to achieve a remote code execution (RCE) within the affected product. Affected Products: UBB-XG (Version 1.2.2 and earlier) UDB-Pro/UDB-Pro-Sector (Version 1.4.1 and earlier) UBB (Version 3.1.5 and earlier) Mitigation: Update your UBB-XG to Version 1.2.3 or later. Update your UDB-Pro/UDB-Pro-Sector to Version 1.4.2 or later. Update your UBB to Version 3.1.7 or later.
References		https://community.ui.com/releases/Security-Advisory-Bulletin-060-060/cde18da7-2bc4-41bb-a9cc-48a4a4c479c1
Metrics		cvssV3_1 `{'score': 8.8, 'vector': 'CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}`

MITRE

Status: PUBLISHED

Assigner: hackerone

Published: 2026-01-08T16:14:22.563Z

Updated: 2026-01-09T04:55:27.784Z

Reserved: 2026-01-01T15:00:02.339Z

Link: CVE-2026-21638

Vulnrichment

Updated: 2026-01-08T16:48:20.274Z

NVD

Status : Analyzed

Published: 2026-01-08T17:15:50.357

Modified: 2026-01-14T21:06:07.787

Link: CVE-2026-21638

Redhat

No data.

Metrics

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation none

Automatable no

Technical Impact total

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object