- Security updates have been released to address vulnerabilities in Check Point products.
- the vulnerability addressed is CVE-2026-50751, an authentication bypass vulnerability in Check Point Remote Access VPN and Mobile Access.
- the vulnerability was described as involving a User Authentication bypass in a deprecated IKEv1 key exchange.
- the affected targets are as follows
- Security Gateway versions: R82.10 Jumbo Hotfix Take 19 and earlier.
- Security Gateway versions: R82 Jumbo Hotfix Take 103 and earlier.
- Security Gateway versions: R81.20 Jumbo Hotfix Take 141 or earlier.
- Security Gateway version: R81.10 (EOS).
- Security Gateway version: R81 (EOS).
- Security Gateway version: R80.40 (EOS).
- Spark Firewall version: R82.00.10 Build 998002216 or lower.
- Spark Firewall version: R81.10.17 Build 996004901 or lower.
- Spark Firewall version: R80.20.X (EOS).
- the recommended action is to update to the latest version of the Vulnerability Patch.
- the patching criteria is as follows
- Hotfix Take 19 for Security Gateway R82.10 Jumbo Hotfix Take 3 or later.
- Hotfix Take 2 or later for Security Gateway R82 Jumbo Hotfix Take 103.
- Hotfix Take 2 or later for Security Gateway R81.20 Jumbo Hotfix Take 141.
- Spark Firewall R82.00.10 Build 998002216 or later.
- Spark Firewall R81.10.17 Build 996004901 or later.
- note: We’ve included instructions on how to perform the update on the reference site.
