Vulnerability Description
A malicious actor in Wi-Fi range of the affected product could leverage a vulnerability in the airMAX Wireless Protocol to achieve a remote code execution (RCE) within the affected product. Affected Products: UBB-XG (Version 1.2.2 and earlier) UDB-Pro/UDB-Pro-Sector (Version 1.4.1 and earlier) UBB (Version 3.1.5 and earlier) Mitigation: Update your UBB-XG to Version 1.2.3 or later. Update your UDB-Pro/UDB-Pro-Sector to Version 1.4.2 or later. Update your UBB to Version 3.1.7 or later.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ui | Ubb-Xg Firmware | < 1.2.3 |
| Ui | Ubb-Xg | - |
| Ui | Udb-Pro Firmware | < 1.4.2 |
| Ui | Udb-Pro | - |
| Ui | Udb-Pro-Sector Firmware | < 1.4.2 |
| Ui | Udb-Pro-Sector | - |
| Ui | Ubb Firmware | < 3.1.7 |
| Ui | Ubb | - |
Related Weaknesses (CWE)
References
FAQ
What is CVE-2026-21638?
CVE-2026-21638 is a vulnerability with a CVSS score of 8.8 (HIGH). A malicious actor in Wi-Fi range of the affected product could leverage a vulnerability in the airMAX Wireless Protocol to achieve a remote code execution (RCE) within the affected product. Affec...
How severe is CVE-2026-21638?
CVE-2026-21638 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-21638?
Check the references section above for vendor advisories and patch information. Affected products include: Ui Ubb-Xg Firmware, Ui Ubb-Xg, Ui Udb-Pro Firmware, Ui Udb-Pro, Ui Udb-Pro-Sector Firmware.