AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

🔥 This vulnerability is being actively exploited in the wild (CISA Known Exploited Vulnerabilities catalog)

CVE-2026-50751: Check Point Security Gateway Improper Authentication Vulnerability

infovulnerability🔥 Actively Exploited

security

Source: CISA Known Exploited VulnerabilitiesJune 7, 2026CVE-2026-50751

Summary

Check Point Security Gateway has a flaw in IKEv1 (a protocol for setting up secure VPN connections) that allows attackers to bypass password authentication and connect to remote access VPNs without valid credentials. This vulnerability is currently being exploited by real attackers.

Solution / Mitigation

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable. See Check Point's hotfix at https://blog.checkpoint.com/security/check-point-releases-important-hotfix-for-vulnerabilities-in-deprecated-ikev1-vpn-protocol/ and support documentation at https://support.checkpoint.com/results/sk/sk185033.

Vulnerability Details

EPSS (30-day exploit probability)

EPSS: 0.0%

Patch Available

Yes

Exploit Maturity

🔥 Actively Exploited

Disclosure Date

June 7, 2026

Classification

Attack SophisticationModerate

Taxonomy References

CWE (Weakness Type)

CWE-287

CAPEC (Attack Pattern)

CAPEC-114

Monthly digest — independent AI security research

Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-50751

First tracked: June 8, 2026 at 08:00 PM

Classified by LLM (prompt v3) · confidence: 95%