CHECK Point has issued a warning about a critical-severity vulnerability (CVE-2026-50751) affecting its VPN and firewall products, allowing remote attackers to bypass authentication and establish connections without valid credentials. The issue, tied to deprecated IKEv1 key exchange logic, has been exploited since May 7, targeting various organizations, with evidence linking at least one incident to Qilin ransomware. A second related vulnerability (CVE-2026-50752) was also identified but has not been exploited.
Hotfixes have been released to mitigate these vulnerabilities, and U.S. cybersecurity agency CISA has placed CVE-2026-50751 in its Known Exploited Vulnerabilities catalog, urging timely patching.