CVE-2026-50751: Check Point Security Gateway

What is CVE-2026-50751?

A logic flow weakness in Remote Access and Mobile Access certificate validation in deprecated IKEv1 key exchange allows an unauthenticated remote attacker to bypass user authentication and establish a remote access VPN connection without a valid user password.

CVSS9.3 NVD 3.1

SeverityCRITICAL

Exploitation In the wild In CISA KEV

EPSS18% · P95

Triage statusActive Exploit

ActionPatch immediately

CVSS vectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N

CWECWE-287

NVD published2026-06-08

NVD last modified2026-06-08

CISA Known Exploited Vulnerability

Check Point Security Gateway Improper Authentication Vulnerability

Added to KEV2026-06-08

Federal patch deadline2026-06-11

Known ransomware useKnown

Affected product

Check Point Security Gateway

Remediation Steps

Apply the vendor security update for Check Point Remote Access VPN / Mobile Access as a priority.
Restrict network exposure of the affected service to trusted sources until patched.
Review logs and detections for indicators of exploitation.
Confirm fixed versions against the official vendor advisory before deploying.

References

Coverage on defend.network

Vulnerability Priority Report – Week 2 of June 2026 (June 8 – 14)
Critical Check Point VPN and Linux kernel flaws under active exploitation; NSO spyware defies court order (2026-06-09)

🤖 This CVE page is generated by defend.network from NVD, CISA KEV, EPSS, and our verified daily briefings. Severity and exploitation data come from official sources; always verify remediation steps against the official vendor advisory before acting in production.