Ubiquiti Networks issued two high-severity security advisories (Bulletins 060 and 061) detailing critical remote code execution vulnerabilities affecting its airMAX Wireless Protocol and various airMAX and airFiber products.
- The flaws, identified as CVE-2026-21638 and CVE-2026-21639, carry a high CVSS severity score of 8.8.
- Immediate firmware updates are required for UniFi Building Bridge and airMAX users to mitigate significant security risks.
- A separate medium-severity denial-of-service vulnerability was also disclosed, urging users to update the UniFi Protect Application to version 6.2.72 or later.