CVE-2026-50751
mediumEPSS Score
0.0%
Exploitation probability in 30 days
Top 99% most likely to be exploited
⚠️ CISA Known Exploited Vulnerability
Added to KEV: 2026-06-08
Remediation Due: 2026-06-11 (⚠ 28d overdue)
Vulnerability Report
Generated by CyberWatcher
Description
A logic flow weakness in Remote Access and Mobile Access certificate validation in deprecated IKEv1 key exchange allows an unauthenticated remote attacker to bypass user authentication and establish a remote access VPN connection without a valid user password.
CWE
CWE-287Affected Products
checkpoint Quantum Security Gatewaycheckpoint Spark Firewalls