CVE-2026-50751

medium Check Point ⚠️ CISA KEV — Exploited in the Wild
EPSS Score
0.0%
Exploitation probability in 30 days
Top 99% most likely to be exploited
Published: June 8, 2026 (31 days ago)
Last Modified: June 9, 2026
Vendor: Check Point
Source: MITRE

⚠️ CISA Known Exploited Vulnerability

Added to KEV: 2026-06-08
Remediation Due: 2026-06-11 (⚠ 28d overdue)

Description

A logic flow weakness in Remote Access and Mobile Access certificate validation in deprecated IKEv1 key exchange allows an unauthenticated remote attacker to bypass user authentication and establish a remote access VPN connection without a valid user password.

CWE

CWE-287

Affected Products

checkpoint Quantum Security Gatewaycheckpoint Spark Firewalls

References