Check Point Products Multiple Vulnerabilities
RISK: Medium Risk
TYPE: Security software and application - Security Software & Appliance
Multiple vulnerabilities were identified in Check Point Products. A remote attacker could exploit some of these vulnerabilities to trigger security restriction bypass on the targeted system.
Note:
CVE-2026-50751 is being exploited in the wild. An attacker can bypass user authentication by exploiting a logic flow weakness in the Remote Access and Mobile Access certificate validation and establish a remote access VPN connection without a valid user password. Successful exploitation requires multiple preconditions to be met. Hence, the risk level is rated as Medium Risk.
Impact
- Security Restriction Bypass
System / Technologies affected
- Security Gateways
- Spark Firewalls
For CVE-2026-50751
- Vulnerable Configurations
Versions:- Security Gateways:
- R82.10 Jumbo Hotfix Take 19 or below
- R82 Jumbo Hotfix Take 103 or below
- R81.20 Jumbo Hotfix Take 141 or below
- R81.10 (EOS)
- R81 (EOS)
- R80.40 (EOS)
- Spark Firewalls: R80.20.X (EOS), R81.10.X, R82.00.X
- VPN Remote Access or Mobile Access is enabled
- IKEv1 is enabled for remote access
- Gateways accept legacy Remote Access clients
- Gateways do not demand a machine certificate for connections
- Security Gateways:
Solutions
Before installation of the software, please visit the software vendor web-site for more details.
Apply fixes or mitigations issued by the vendor:
- https://support.checkpoint.com/results/sk/sk185033/
- https://support.checkpoint.com/results/sk/sk185035/
Vulnerability Identifier
Source
Related Link
Share with