CISA has mandated that U.S. government agencies address a critical vulnerability in Check Point Remote Access VPN and Mobile Access systems, due to its exploitation in zero-day attacks by Qilin ransomware affiliates. The vulnerability, identified as CVE-2026-50751, allows unauthenticated remote attackers to bypass authentication and create VPN connections on affected systems. It specifically impacts configurations using the outdated IKEv1 key exchange protocol, requiring immediate security measures to be implemented.
U.S. Agencies Ordered to Patch CVE-2026-50751 in Check Point VPN
CyberSIXT Evidence Panel
Primary Source
support.checkpoint.com
CVE Intel
CISA KEV
Listed in KEV
Patch
Patch Available
Threat Actor
Qilin
Article by CyberSIXT
Timeline Coverage
Swipe to explore timeline
-
U.S. Agencies Ordered to Patch CVE-2026-50751 in Check Point VPN
databreaches.net
-
Check Point VPN Zero-Day Exploited in Qilin Ransomware Attacks
securityweek.com
-
LiteLLM, Check Point Flaws Hit as MagicAd Trojan Surges
securityonline.info
-
Check Point Warns Critical Auth Bypass Bug Exploited in the Wild
infosecurity-magazine.com
-
Check Point VPN flaw under attack as Google slashes AI Plus price
-
Critical flaws CVE-2026-42271/50751 exploited in Zlibrary mirrors
-
Microsoft updates OneDrive policy amid LiteLLM, Check Point flaws
-
Check Point VPN bug lets attackers hijack open source downloads
-
CISA Flags Critical Flaws in LiteLLM and Check Point VPN Gateways
securityaffairs.com
-
Check Point VPN exploit active as Apple Notes adds Markdown export
-
Check Point VPN flaw hits as OpenAI files for $1 trillion IPO
-
Apple iOS 27 Adds AI Password Reset Amid Two Critical CVEs