ГлавнаяУязвимости → CVE-2026-50751
9.3критическая

CVE-2026-50751

Описание

A logic flow weakness in Remote Access and Mobile Access certificate validation in deprecated IKEv1 key exchange allows an unauthenticated remote attacker to bypass user authentication and establish a remote access VPN connection without a valid user password.

Затрагиваемое ПО
Checkpoint Gaia osCheckpoint Gaia embeddedCheckpoint Quantum spark 1530Checkpoint Quantum spark 1550Checkpoint Quantum spark 1570Checkpoint Quantum spark 1570rCheckpoint Quantum spark 1590Checkpoint Quantum spark 1595rCheckpoint Quantum spark 1600Checkpoint Quantum spark 1800Checkpoint Quantum spark 1900Checkpoint Quantum spark 2000Checkpoint Quantum spark 1535Checkpoint Quantum spark 1555Checkpoint Quantum spark 1575Checkpoint Quantum spark 1575rCheckpoint Quantum spark 2530Checkpoint Quantum spark 2550Checkpoint Quantum spark 2560Checkpoint Quantum spark 2570Checkpoint Quantum spark 2580Checkpoint Quantum spark 2590
CVSS
Балл9.3 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
Источники
https://support.checkpoint.com/results/sk/sk185033https://blog.checkpoint.com/security/check-point-releases-important-hotfix-for-vulnerabilities-in-deprecated-ikev1-vpn-protocol/https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-50751