CVE-2026-50751

Severity CVSS v4.0:

Pending analysis

Type:

CWE-287 Authentication Issues

Publication date:

08/06/2026

Last modified:

08/06/2026

Description

A logic flow weakness in Remote Access and Mobile Access certificate validation in deprecated IKEv1 key exchange allows an unauthenticated remote attacker to bypass user authentication and establish a remote access VPN connection without a valid user password.

Impact

References to Advisories, Solutions, and Tools

https://support.checkpoint.com/results/sk/sk185033