CVE-2026-50751
Check Point Security Gateway Improper Authentication Vulnerability
CVSS
—
Sin CVSS
EPSS
70.1%
p99
KEV
SÍ
8 jun 2026
Exploit Today
80
0-100
Publicado: — · Última mod.: —
Producto
Check Point / Security Gateway
Vulnerabilidad
Check Point Security Gateway Improper Authentication Vulnerability
Añadido a KEV
8 jun 2026
Remediar antes de
11 jun 2026
Uso conocido en ransomware
Sí
Descripción resumida
Check Point Security Gateway contains an improper authentication vulnerability in IKEv1 key exchange that could allow an unauthenticated remote attacker to bypass user authentication and establish a remote access VPN connection without a valid user password.
Acción requerida
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Notas
https://blog.checkpoint.com/security/check-point-releases-important-hotfix-for-vulnerabilities-in-deprecated-ikev1-vpn-protocol/ ; https://support.checkpoint.com/results/sk/sk185033?_gl=1*1wqeqhc*_gcl_au*MTI1MzE5MjI2LjE3ODA5MzQ1NTM. ; https://nvd.nist.gov/vuln/detail/CVE-2026-50751
Sin CVEs relacionados por CWE o producto.