CVE-2026-50751

CRITICAL9.3/ 10.0
Share:
Published: June 8, 2026 at 12:16 PM
Modified: June 17, 2026 at 10:57 AM
Source: cve@checkpoint.com

Vulnerability Description

A logic flow weakness in Remote Access and Mobile Access certificate validation in deprecated IKEv1 key exchange allows an unauthenticated remote attacker to bypass user authentication and establish a remote access VPN connection without a valid user password.

CVSS Metrics

Base Score
9.3
Severity
CRITICAL
Vector String
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N

Weaknesses (CWE)

Source: cve@checkpoint.com