Checkpoint IKEv1 Cert Validation Bypass (CVE-2026-50751)
CVE-2026-50751 Published on June 8, 2026
User Authentication Bypass in VPN Remote Access and Mobile Access
A logic flow weakness in Remote Access and Mobile Access certificate validation in deprecated IKEv1 key exchange allows an unauthenticated remote attacker to bypass user authentication and establish a remote access VPN connection without a valid user password.
Known Exploited Vulnerability
This Check Point Security Gateway Improper Authentication Vulnerability is part of CISA's list of Known Exploited Vulnerabilities. Check Point Security Gateway contains an improper authentication vulnerability in IKEv1 key exchange that could allow an unauthenticated remote attacker to bypass user authentication and establish a remote access VPN connection without a valid user password.
The following remediation steps are recommended / required by June 11, 2026: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Vulnerability Analysis
CVE-2026-50751 can be exploited with network access, and does not require authorization privileges or user interaction. This vulnerability is considered to have a low attack complexity. This vulnerability is known to be actively exploited by threat actors in an automatable fashion. The potential impact of an exploit of this vulnerability is considered to have a high impact on confidentiality, with no impact on integrity, and no impact on availability.
Weakness Type
What is an authentification Vulnerability?
When an actor claims to have a given identity, the software does not prove or insufficiently proves that the claim is correct.
CVE-2026-50751 has been classified to as an authentification vulnerability or weakness.
Products Associated with CVE-2026-50751
Want to know whenever a new CVE is published for Check Point Software Security Gateway? stack.watch will email you.
Affected Versions
checkpoint Quantum Security Gateway:- Version R82.10 with Jumbo Hotfix Take 19 or below is affected.
- Version R82 with Jumbo Hotfix Take 103 or below is affected.
- Version R81.20 with Jumbo Hotfix Take 141 or below is affected.
- Version R81.10, R81, and R80.40 is affected.
- Version R80.20.X, R81.10.X, and R82.00.X is affected.