CNNVD-202601-1430 Information

Jan 08, 2026 cve

CNNVD ID

CNNVD-202601-1430

CVE-2026-21638

CNNVD Published: 2026-01-08

Description (Chinese)

Ubiquiti UBB-XG和Ubiquiti UDB-Pro都是美国优比快（Ubiquiti）公司的一款无线网桥设备。 Ubiquiti多款产品存在安全漏洞，该漏洞源于airMAX无线协议存在问题，可能导致远程代码执行。以下产品和版本受到影响：UBB-XG 1.2.2及之前版本、UDB-Pro/UDB-Pro-Sector 1.4.1及之前版本和UBB 3.1.5及之前版本。

Description (English)

Ubiquiti UBB-XG and Ubiquiti UDB-Pro are all Ubiquiti Wireless Bridge equipment. There is a safety gap in multiple Ubiquiti products, which stems from problems with the airMAX wireless protocol, which may lead to remote code implementation. The following products and versions were affected: UBB-XG 1.2.2 and earlier, UDB-Pro/UDB-Pro-Sector 1.4.1 and earlier and UBB 3.1.5 and earlier.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

优比快

Published

2026-01-08

Last Modified

2026-02-24

References

https://community.ui.com/releases/Security-Advisory-Bulletin-060-060/cde18da7-2bc4-41bb-a9cc-48a4a4c479c1 https://access.redhat.com/security/cve/cve-2026-21638

Patch

https://community.ui.com/releases/Security-Advisory-Bulletin-060-060/cde18da7-2bc4-41bb-a9cc-48a4a4c479c1

Share on: