CVE-2026-50752

Name of the Vulnerable Software and Affected Versions Check Point VPN (affected versions not specified)

Description A weakness in the certificate validation logic of the deprecated IKEv1 (Internet Key Exchange version 1) key exchange allows an unauthenticated man-in-the-middle attacker to bypass certificate validation in VPN site-to-site connections using certificate-based authentication. This could lead to the interception or modification of traffic traversing the VPN tunnel. Approximately 1.8k instances have been identified globally.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.