PT-2026-2074 · Ubiquiti Networks · Airfiber Af60+3
Published
2026-01-08
·
Updated
2026-05-19
·
CVE-2026-21639
CVSS v3.1
5.4
Medium
| Vector | AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
airMAX AC versions 8.7.20 and earlier
airMAX M versions 6.3.22 and earlier
airFiber AF60-XG version 1.2.2 and earlier
airFiber AF60 versions 2.6.7 and earlier
Description
A malicious actor within Wi-Fi range could exploit a flaw in the airMAX Wireless Protocol to execute code remotely on affected devices.
Recommendations
Update airMAX AC to version 8.7.21 or later.
Update airMAX M to version 6.3.24 or later.
Update airFiber AF60-XG to version 1.2.3 or later.
Update airFiber AF60 to version 2.6.8 or later.
Fix
RCE
Command Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Airfiber Af60
Airfiber Af60-Xg
Airmax Ac
Airmax