A critical vulnerability in Check Point VPN, identified as CVE-2026-50751, poses a severe threat to remote access deployments, with a CVSS severity score of 9.3. The flaw allows unauthorized users to establish VPN sessions by bypassing authentication through a defect in certificate validation. Active exploitation of this vulnerability has been observed since May 7, 2026, leading to unauthorized access and potential ransomware deployment, notably linked to Qilin ransomware groups.
Immediate remediation involves applying hotfixes to the affected gateways and monitoring network integrity. A secondary vulnerability, CVE-2026-50752, also exists but is not yet exploited in the wild.