Check Point has disclosed active exploitation of CVE-2026-50751, a critical flaw affecting Remote Access VPN and Mobile Access deployments using deprecated IKEv1, allowing unauthenticated attackers to bypass authentication and open VPN sessions. The activity has targeted a limited number of organizations globally and has been linked in one case to a Qilin ransomware affiliate, while a separate issue, CVE-2026-50752, could enable AitM attacks on site-to-site VPN connections. #CVE-2026-50751 #CVE-2026-50752 #CheckPoint #Qilin
Keypoints
- Check Point warned that CVE-2026-50751 is being actively exploited.
- The flaw affects Remote Access VPN and Mobile Access deployments using IKEv1.
- An attacker can bypass user authentication without a valid password.
- Exploitation has targeted only a few dozen organizations worldwide.
- Check Point also identified CVE-2026-50752, which may enable AitM attacks on site-to-site VPN connections.
Read More: https://thehackernews.com/2026/06/critical-check-point-vpn-flaw-exploited.html