Severity: Critical (CVSS 9.3)

Affected Systems: Affected products listed in the NVD and vendor advisory

Overview

A critical vulnerability identified as CVE-2026-50751 has been disclosed.

A logic flow weakness in Remote Access and Mobile Access certificate validation in deprecated IKEv1 key exchange allows an unauthenticated remote attacker to bypass user authentication and establish a remote access VPN connection without a valid user password.

CISA KEV: This CVE is listed as a known exploited vulnerability. Check Point Security Gateway contains an improper authentication vulnerability in IKEv1 key exchange that could allow an unauthenticated remote attacker to bypass user authentication and establish a remote access VPN connection without a valid user password.

CISA due date: 2026-06-11

Risk

CVSS and CISA data indicate the following:

  • Listed by CISA as a known exploited vulnerability
  • CVSS attack vector is Network, so exposure depends on whether the affected service or component is reachable
  • Privileges required: NONE
  • User interaction: NONE
  • Scope: CHANGED

Required Action

Review the linked vendor and NVD advisory, then apply the vendor-provided update or mitigation for the affected product.

Prioritize systems where the affected product is internet-facing, handles authentication, or runs with elevated privileges.

Verify Updates

Confirm whether your environment uses the affected product(s): Affected products listed in the NVD and vendor advisory.

After remediation, verify the installed version against the fixed or unaffected versions listed by the vendor.

Temporary Mitigation (if patch is not available)

Use the mitigation published by the vendor. If no vendor mitigation is available, reduce exposure to the affected product, restrict access to trusted users or networks, and increase monitoring until an update can be applied.

Recommendation

  • Use vendor and NVD references as the source of truth for affected versions and remediation
  • Patch or mitigate affected products after confirming exposure in your environment
  • Monitor affected systems for unusual activity until remediation is complete

Support

If you require assistance, please contact our support team.

Immediate action is strongly recommended to protect your infrastructure.

Source Details



Monday, June 8, 2026

« Back