—–BEGIN PGP SIGNED MESSAGE—–

Hash: SHA256

Multiple Vulnerabilities in Check Point VPN Products

Indian – Computer Emergency Response Team (https://www.cert-in.org.in)

Severity Rating: CRITICAL

Software Affected

Security Gateways

R82.10 Jumbo Hotfix Take 19 or below 

R82 Jumbo Hotfix Take 103 or below 

R81.20 Jumbo Hotfix Take 141 or below 

R81.10 (EOS) 

R81 (EOS) 

R80.40 (EOS)

Spark Firewalls

R80.20.X (EOS) 

R81.10.X 

R82.00.X

Overview

Multiple vulnerabilities have been reported in Check Point VPN products which could allow an attacker to bypass user authentication or compromise the integrity of VPN communications through a Man in the Middle (MitM) attack.

Target Audience:

Organizations and individuals using affected Check Point Security Gateways and Spark Firewall products.

Risk Assessment:

High risk of unauthorized access and compromise of VPN trust relationships.

Impact Assessment:

Potential for establishment of unauthorized VPN connections or Man in the Middle (MitM) attacks on site-to-site VPN communications.

Description

Check Point provides network security, cloud security and management solutions for enterprise environments.

Multiple vulnerabilities exist in Check Point VPN products due to weaknesses in certificate validation logic associated with the deprecated IKEv1 key exchange mechanism and logic flow weaknesses in VPN authentication process.

Successful exploitation of these vulnerabilities could allow an attacker to bypass user authentication and establish unauthorized VPN connections or perform Man in the Middle (MitM) attacks against communications between VPN gateways.

Note: The vulnerability is being exploited in the wild.

Solution

Apply appropriate updates as mentioned by the Vendor:

https://support.checkpoint.com/results/sk/sk185033

https://support.checkpoint.com/results/sk/sk185035

Vendor Information

Check Point

https://blog.checkpoint.com/security/

References

 

https://blog.checkpoint.com/security/check-point-releases-important-hotfix-for-vulnerabilities-in-deprecated-ikev1-vpn-protocol/

CVE Name

CVE-2026-50751

CVE-2026-50752

– —

Thanks and Regards,

CERT-In

Incident Response Help Desk

e-mail: incident@cert-in.org.in

Phone: +91-11-22902657

Toll Free Number: 1800-11-4949

Toll Free Fax : 1800-11-6969

Web: http://www.cert-in.org.in

PGP Fingerprint: A768 083E 4475 5725 B81A A379 2156 C0C0 B620 D0B4

PGP Key information:

https://www.cert-in.org.in/s2cMainServlet?pageid=CONTACTUS

Postal address:

Indian Computer Emergency Response Team (CERT-In)

Ministry of Electronics and Information Technology

Government of India

Electronics Niketan

6, C.G.O. Complex

New Delhi-110 003

—–BEGIN PGP SIGNATURE—–

iQIzBAEBCAAdFiEE6r4Iam/Ey0c/KakL3jCgcSdcys8FAmotSK4ACgkQ3jCgcSdc

ys/k5g//cY3wvW7DA/sj1BFPNXMLe7sPs/+/mvukjrsD+MCsr3NNxuv0icjNIK0C

YRvU6bAgI30aYebwnv/Yyd8qutLsLO656DRmJf4roOOC3uqXMHVlH1YF4tHk3wwP

DJrYubxPebXWp40zvsizt5NO7adpHfYjSLNr+QFo8glixk0IIdCB9j4h6Hg94Egj

cTa+alMTI98uKIMg427NlOIUvVyro4KYHrOGnDJr+cgXONDGEXicOqrA5eWPrF36

g37sh015j7vPK1PP6V93AByer3kw2O0L3NcTcI65GU5XQbiPUGcQJQkc76aib4gn

WOZMdKeRUpdodJqCZq6KWxWZWT9ratXlMJ69OSndQjbjXXrfUuVc2s+JTLZ2dox2

rAQ6d0yDmzd16lWoB1tHxc7Jdy6Yxzj53XTsflHiu6PYOsqqJGlLzQT/aWStbrDG

O21JE8OvRIfBHce1Ucsta9VmCy0sdMOlda0JAah0zLxEZCHlMgBYxOQp2XFxk86D

Zs/cqH0qVEutZSJ12JQGVwZf5vuGFrxtL+4ZPl3Dfb9cMHhC0JLYp2IyhZTWB5MU

lrMogwIQD3toijtPQ+QeKltWsOYbJq0CUd9imoWqh+akXDeTwrKyT4KqupOwacgC

zeuNA8f87knybQf4NxcbLTOwaY5GlCEmo6Olwd0elu/fOGHlaBc=

=ur6A

—–END PGP SIGNATURE—–