CVE-2026-50751

CRITICAL CISA KEV EPSS 99.3%
Published Jun 8, 20263w ago · Modified Jun 17, 20262w ago
9.3 CVSS 3.1
Critical
Find Similar
Published Jun 8, 2026 3w ago
Last Modified Jun 17, 2026 2w ago
KEV Listed Jun 8, 2026 3w ago
KEV Due Jun 11, 2026 20d overdue

Description

A logic flow weakness in Remote Access and Mobile Access certificate validation in deprecated IKEv1 key exchange allows an unauthenticated remote attacker to bypass user authentication and establish a remote access VPN connection without a valid user password.

CVSS Details

Base Score
9.3
Exploitability
3.9
Impact
4.7
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Changed
Confidentiality High
Integrity Low
Availability None

Threat Intelligence

CISA Known Exploited Overdue 20d
Added
Jun 8, 2026
Due
Jun 11, 2026

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

EPSS Exploit Probability
99.3% percentile
Exploit & Patch Status
Actively Exploited (KEV)
Patch Available

Weaknesses 1

CWE-287 Improper Authentication Authentication

Affected Products 93

VendorProductVersionRange
checkpointgaia_os*≥r80.40  –  <r81.20
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr81.20any
checkpointgaia_osr82any
checkpointgaia_osr82any
checkpointgaia_osr82any
checkpointgaia_osr82any
checkpointgaia_osr82any
checkpointgaia_osr82any
checkpointgaia_osr82any
checkpointgaia_osr82any
checkpointgaia_osr82any
checkpointgaia_osr82any
checkpointgaia_osr82any
checkpointgaia_osr82any
checkpointgaia_osr82any
checkpointgaia_osr82any
checkpointgaia_osr82any
checkpointgaia_osr82any
checkpointgaia_osr82any
checkpointgaia_osr82any
checkpointgaia_osr82.10any
checkpointgaia_osr82.10any
checkpointgaia_osr82.10any
checkpointgaia_embedded*≥r80.20.00  –  <r81.10.17
checkpointgaia_embeddedr81.10.17any
checkpointgaia_embeddedr81.10.17any
checkpointgaia_embeddedr81.10.17any
checkpointgaia_embeddedr81.10.17any
checkpointgaia_embeddedr81.10.17any
checkpointgaia_embeddedr81.10.17any
checkpointquantum_spark_1530*any
checkpointquantum_spark_1550*any
checkpointquantum_spark_1570*any
checkpointquantum_spark_1570r*any
checkpointquantum_spark_1590*any
checkpointquantum_spark_1595r*any
checkpointquantum_spark_1600*any
checkpointquantum_spark_1800*any
checkpointquantum_spark_1900*any
checkpointquantum_spark_2000*any
checkpointgaia_embedded*≥r80.20.00  –  <r82.00.10
checkpointgaia_embeddedr82.00.10any
checkpointgaia_embeddedr82.00.10any
checkpointgaia_embeddedr82.00.10any
checkpointgaia_embeddedr82.00.10any
checkpointgaia_embeddedr82.00.10any
checkpointgaia_embeddedr82.00.10any
checkpointgaia_embeddedr82.00.10any
checkpointquantum_spark_1535*any
checkpointquantum_spark_1555*any
checkpointquantum_spark_1575*any
checkpointquantum_spark_1575r*any
checkpointquantum_spark_2530*any
checkpointquantum_spark_2550*any
checkpointquantum_spark_2560*any
checkpointquantum_spark_2570*any
checkpointquantum_spark_2580*any
checkpointquantum_spark_2590*any

References 3

  • blog.checkpoint.com https://blog.checkpoint.com/security/check-point-releases-important-hotfix-for-vulnerabilities-in-deprecated-ikev1-vpn-protocol/
    Vendor Advisory
  • support.checkpoint.com https://support.checkpoint.com/results/sk/sk185033
    MitigationPatchVendor Advisory
  • cisa.gov https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-50751
    US Government Resource

Remediation