Black & White Path

Jun 9, 2026 · Information Security

Check Point VPN Zero-Day CVE‑2026‑50751 Weaponized by Qilin Ransomware Group

A critical authentication‑bypass flaw (CVE‑2026‑50751, CVSS 9.3) in Check Point's deprecated IKEv1 VPN was actively exploited by the Qilin ransomware gang for over a month before a patch was released, affecting numerous gateway versions and prompting urgent mitigation guidance.