Check Point warned of active exploitation of CVE-2026-50751, a critical 9.3 CVSS vulnerability in IKEv1 Remote Access VPN and Mobile Access deployments. The flaw lets unauthenticated attackers bypass password authentication via a certificate validation logic error. Exploitation began May 7, 2026, targeting a few dozen organizations globally, with one case linked to Qilin ransomware.
Tap to vote and see what everyone thinks.
