CVE-2026-50752

HIGH

Certificate Validation Bypass in VPN Site-to-Site Connections Using IKEv1

Title source: cna

Description

A weakness in the certificate validation logic of the deprecated IKEv1 key exchange may allow an unauthenticated attacker positioned as a man-in-the-middle to bypass certificate validation in VPN site-to-site connections that use certificate-based authentication. Successful exploitation could allow interception or modification of traffic traversing the VPN tunnel.

References (1)

Core 1

Core References

https://support.checkpoint.com/results/sk/sk185035

Scores

CVSS v3 7.4

EPSS 0.0425

EPSS Percentile 89.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-295

Status published

Products (5)

checkpoint/Quantum Security Gateway R81.10, R81, and R80.40

checkpoint/Quantum Security Gateway R81.20 with Jumbo Hotfix Take 141 or below

checkpoint/Quantum Security Gateway R82 with Jumbo Hotfix Take 103 or below

checkpoint/Quantum Security Gateway R82.10 with Jumbo Hotfix Take 19 or below

checkpoint/Spark Firewalls R80.20.X, R81.10.X, and R82.00.X

Published Jun 08, 2026

Tracked Since Jun 08, 2026