{“lastseen”:””,”description”:”A weakness in the certificate validation logic of the deprecated IKEv1 key exchange may allow an unauthenticated attacker positioned as a man-in-the-middle to bypass certificate validation in VPN site-to-site connections that use certificate-based authentication. Successful exploitation could allow interception or modification of traffic traversing the VPN tunnel.”,”published”:”2026-06-08T11:00:38.563Z”,”modified”:”2026-06-08T11:00:38.563Z”,”type”:”cve”,”title”:”Certificate Validation Bypass in VPN Site-to-Site Connections Using IKEv1″,”source”:”checkpoint”,”references”:”https:\/\/support.checkpoint.com\/results\/sk\/sk185035″,”id”:”CVE-2026-50752″,”bulletinFamily”:””,”cwe”:[“CWE-295″],”cvelist”:null,”sourceData”:”checkpoint Quantum Security Gateway R82.10 with Jumbo Hotfix Take 19 or below\\ncheckpoint Quantum Security Gateway R82 with Jumbo Hotfix Take 103 or below\\ncheckpoint Quantum Security Gateway R81.20 with Jumbo Hotfix Take 141 or below\\ncheckpoint Quantum Security Gateway R81.10, R81, and R80.40\\ncheckpoint Spark Firewalls R80.20.X, R81.10.X, and R82.00.X”,”sourceHref”:””,”cvss”:{“score”:7.4,”severity”:”HIGH”,”vector”:”CVSS:3.1\/AV:N\/AC:H\/PR:N\/UI:N\/S:U\/C:H\/I:H\/A:N”,”version”:”3.1″},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:””,”category_name”:”CVE”,”post_link”:””,”product”:”Quantum Security Gateway”,”version”:”R82.10 with Jumbo Hotfix Take 19 or below”,”vendor”:”checkpoint”,”ai_description”:””,”ai_severity”:””,”ai_vendor”:””,”ai_product”:””,”ai_version”:””,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"
{“lastseen”:””,”description”:”A weakness in the certificate validation logic of the deprecated IKEv1 key exchange may allow an unauthenticated attacker positioned as a man-in-the-middle to bypass certificate…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[6,8,29,12,15,13,7,11,5],"class_list":["post-60665","post","type-post","status-publish","format-standard","hentry","category-category_cve","tag-cve","tag-cvss","tag-cvss-74","tag-exploit","tag-high","tag-news","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\n