7.4
CVE-2026-50752
- EPSS 4.86%
- Veröffentlicht 08.06.2026 11:00:38
- Zuletzt bearbeitet 08.06.2026 14:57:49
- Quelle cve@checkpoint.com
- CVE-Watchlists
- Unerledigt
Certificate Validation Bypass in VPN Site-to-Site Connections Using IKEv1
A weakness in the certificate validation logic of the deprecated IKEv1 key exchange may allow an unauthenticated attacker positioned as a man-in-the-middle to bypass certificate validation in VPN site-to-site connections that use certificate-based authentication. Successful exploitation could allow interception or modification of traffic traversing the VPN tunnel.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
Herstellercheckpoint
≫
Produkt
Quantum Security Gateway
Version
R82.10 with Jumbo Hotfix Take 19 or below
Status
affected
Version
R82 with Jumbo Hotfix Take 103 or below
Status
affected
Version
R81.20 with Jumbo Hotfix Take 141 or below
Status
affected
Version
R81.10, R81, and R80.40
Status
affected
Herstellercheckpoint
≫
Produkt
Spark Firewalls
Version
R80.20.X, R81.10.X, and R82.00.X
Status
affected
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 4.86% | 0.909 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| cve@checkpoint.com | 7.4 | 2.2 | 5.2 |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
|
CWE-295 Improper Certificate Validation
The product does not validate, or incorrectly validates, a certificate.
Für Zugriff zu Vulnerability Intelligence ist ein VulnDex Zugang erforderlich.
Für Zugriff zu Vulnerability Intelligence ist ein VulnDex Zugang erforderlich.
Für Zugriff zu Vulnerability Intelligence ist ein VulnDex Zugang erforderlich.
https://support.checkpoint.com/results/sk/sk185035