CVE-2026-50752EPSS p89.8%

CVE-2026-50752CVE-2026-50752

Description

A weakness in the certificate validation logic of the deprecated IKEv1 key exchange may allow an unauthenticated attacker positioned as a man-in-the-middle to bypass certificate validation in VPN site-to-site connections that use certificate-based authentication. Successful exploitation could allow interception or modification of traffic traversing the VPN tunnel.

Scoring

CVSS 7.4 ()
VectorCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
EPSS4.25% probability of exploitation · percentile 89.8% · 2026-06-18T12:00:27Z
Last modified2026-06-08

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Check Point Security Gateway Improper Authentication Vulnerability
CVE
CVE-2026-48131
CVE
CVE-2026-50208
CVE
CVE-2025-9293
CVE
CVE-2026-48132
CVE
CVE-2026-9758
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.