Vulnerability Details CVE-2026-50751
A logic flow weakness in Remote Access and Mobile Access certificate validation in deprecated IKEv1 key exchange allows an unauthenticated remote attacker to bypass user authentication and establish a remote access VPN connection without a valid user password.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.177
EPSS Ranking 95.2%
CVSS Severity
CVSS v3 Score 9.3
Proposed Action
Check Point Security Gateway contains an improper authentication vulnerability in IKEv1 key exchange that could allow an unauthenticated remote attacker to bypass user authentication and establish a remote access VPN connection without a valid user password.
Ransomware Campaign
Known