CVE-2026-50751
User Authentication Bypass in VPN Remote Access and Mobile Access
In short
A flaw in VPN certificate validation lets attackers connect to corporate networks without needing a valid password. This is critical because it gives unauthorized people direct access to internal systems and sensitive data.
Technical detail
CWE-287 authentication bypass in IKEv1 key exchange certificate validation permits unauthenticated remote attackers to establish VPN sessions without credential verification. The vulnerability stems from improper logic flow in certificate validation mechanisms, enabling complete circumvention of user authentication controls in remote and mobile access deployments.
Summary generated and translated by AI from the official description.
A logic flow weakness in Remote Access and Mobile Access certificate validation in deprecated IKEv1 key exchange allows an unauthenticated remote attacker to bypass user authentication and establish a remote access VPN connection without a valid user password.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
public PoCs found — 8
githubgithub.com/watchtowrlabs/watchTowr-vs-Check-Point-CVE-2026-50751★ 5githubgithub.com/WadesWeaponShed/CVE-2026-50751-Mitigation-Scripts★ 1githubgithub.com/fevar54/CVE-2026-50751---Check-Point-IKEv1-Authentication-Bypass-Exploit★ 1githubgithub.com/WadesWeaponShed/CheckPoint-CVE-Webscanner★ 1githubgithub.com/hlkysipv/CVE-2026-50751-Check-Point-IKEv1-Authentication-Bypass★ 1githubgithub.com/0xBlackash/CVE-2026-50751★ 1githubgithub.com/fernstedt/CVE-2026-50751★ 0githubgithub.com/bolubey/CVE-2026-50751★ 0⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →