Vulnerability Details CVE-2026-21639
A malicious actor in Wi-Fi range of the affected product could leverage a vulnerability in the airMAX Wireless Protocol to achieve a remote code execution (RCE) within the affected product.
Affected Products:
airMAX AC (Version 8.7.20 and earlier)
airMAX M (Version 6.3.22 and earlier)
airFiber AF60-XG (Version 1.2.2 and earlier)
airFiber AF60 (Version 2.6.7 and earlier)
Mitigation:
Update your airMAX AC to Version 8.7.21 or later.
Update your airMAX M to Version 6.3.24 or later.
Update your airFiber AF60-XG to Version 1.2.3 or later.
Update your airFiber AF60 to Version 2.6.8 or later.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 11.1%
CVSS Severity
CVSS v3 Score 5.4
Products affected by CVE-2026-21639
-
cpe:2.3:h:ui:airfiber_af60-xg:-
-
cpe:2.3:h:ui:airfiber_af60:-
-
cpe:2.3:h:ui:airmax_ac:-
-
cpe:2.3:h:ui:airmax_m:-
-
cpe:2.3:o:ui:airfiber_af60-xg_firmware:*
-
cpe:2.3:o:ui:airfiber_af60_firmware:*
-
cpe:2.3:o:ui:airmax_ac_firmware:7.1.3
-
cpe:2.3:o:ui:airmax_m_firmware:*