Check Point VPN authentication-bypass zero-day exploited in the wild (CVE-2026-50751)
Check Point disclosed that attackers, including a Qilin ransomware affiliate, were actively exploiting a critical authentication-bypass zero-day (CVE-2026-50751) in its Remote Access and Mobile Access VPN products to log in without a valid password.
- Victim
- Check Point Software Technologies