Unrated severityNVD Advisory· Published Jan 8, 2026· Updated Jan 8, 2026

CVE-2026-21639

Description

A malicious actor in Wi-Fi range of the affected product could leverage a vulnerability in the airMAX Wireless Protocol to achieve a remote code execution (RCE) within the affected product.

Affected Products:

airMAX AC (Version 8.7.20 and earlier) airMAX M (Version 6.3.22 and earlier) airFiber AF60-XG (Version 1.2.2 and earlier) airFiber AF60 (Version 2.6.7 and earlier)

Mitigation:

Update your airMAX AC to Version 8.7.21 or later. Update your airMAX M to Version 6.3.24 or later. Update your airFiber AF60-XG to Version 1.2.3 or later. Update your airFiber AF60 to Version 2.6.8 or later.

Affected products

Ubiquiti Inc/Airmax Mllm-fuzzy2 versions
<=8.7.20+ 1 more
- (no CPE)range: <=8.7.20
- (no CPE)range: 0
Ubiquiti Inc/Airfiber Af60llm-fuzzy2 versions
<=1.2.2+ 1 more
- (no CPE)range: <=1.2.2
- (no CPE)range: 0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

community.ui.com/releases/Security-Advisory-Bulletin-061-061/1e4fe5f8-29c7-4a7d-a518-01b1537983bamitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000