The point: CVE-2026-50751 (CVSS 9.3) enables circumvention of user authentication in Check Point VPN deployments with IKEv1 through a certificate validation flaw.
Check Point has warned of active exploitation of a critical vulnerability in Remote Access VPN and Mobile Access deployments using the obsolete IKEv1 protocol. An authentication bypass allows attackers to gain access without valid user credentials.
The vulnerability is registered under CVE-2026-50751 and carries a CVSS score of 9.3. The flaw consists of a logic weakness in certificate validation that allows an unauthenticated remote attacker to bypass user authentication.
The risk is significant for CISOs because although IKEv1 is outdated, it continues to be actively deployed in production environments at many organizations. Particularly problematic is that the attack requires no prior authentication – an adversary with network access to the VPN appliance can directly access VPN resources.
Organizations should immediately verify whether their Check Point VPN deployments use IKEv1, and migrate to IKEv2 where possible. Check Point has provided security updates; immediate deployment is recommended to protect against active exploitation.
Source: thehackernews.com · Published 8 June 2026
Lumi AI News — AI-assisted curation in accordance with Art. 50 EU AI Act. Paraphrase and classification by Lumi News Pipeline v1.6.5.