CVE-2026-48132

HIGH

VPN service may restart unexpectedly when processing IKE traffic over NAT-T 4500/UDP

Title source: cna

Description

The Security Gateway does not correctly validate a length value in certain IKE packets when NAT-T is used (4500/UDP). As a result, a specially crafted or malformed packet can cause the VPN processing service to terminate unexpectedly, leading to denial of service (temporary interruption of VPN negotiations/traffic).

References (1)

Core 1

Core References

https://support.checkpoint.com/results/sk/sk184982

Scores

CVSS v3 8.1

EPSS 0.0243

EPSS Percentile 82.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-125

Status published

Products (4)

checkpoint/Quantum Security Gateway All releases from R81.10 and below

checkpoint/Quantum Security Gateway R81.20 with Jumbo Hotfix Take 127 or below

checkpoint/Quantum Security Gateway R82 with Jumbo Hotfix Take 91 or below

checkpoint/Quantum Security Gateway R82.10 with Jumbo Hotfix Take 6 or below

Published May 26, 2026

Tracked Since May 26, 2026