VYPR
Vypr IntelligenceAI-generatedJun 8, 2026· 1 CVE

Check Point Security Gateway Flaw CVE-2026-50751 Added to CISA KEV Under Active Exploitation

The Cybersecurity and Infrastructure Security Agency has added a critical Check Point vulnerability, CVE-2026-50751, to its KEV catalog following confirmed active exploitation linked to ransomware.

Key findings

  • CISA added Check Point vulnerability CVE-2026-50751 to its KEV catalog on June 8, 2026.
  • The vulnerability is actively exploited in the wild and has been linked to ransomware campaigns.
  • Check Point security gateways are high-value targets, serving as critical entry points for corporate networks.
  • Organizations must apply vendor-provided patches immediately to mitigate the risk of network compromise.

The Cybersecurity and Infrastructure Security Agency (CISA) has expanded its Known Exploited Vulnerabilities (KEV) catalog with the addition of a critical security flaw affecting Check Point products. Registered as CVE-2026-50751, the vulnerability represents a severe threat to enterprise perimeter security, as threat actors are actively leveraging it to breach corporate networks.

Security gateways and firewalls from Check Point are foundational components of modern network defense, making them prime targets for sophisticated adversaries. By exploiting CVE-2026-50751, attackers can bypass security controls, establish a foothold, and prepare for downstream activities. Crucially, CISA has flagged this vulnerability as being actively used in ransomware campaigns, elevating the urgency for immediate remediation.

When perimeter devices are compromised, the consequences are often rapid and severe. Ransomware groups frequently target these edge devices to gain initial access, conduct internal reconnaissance, and deploy file-encrypting malware across the entire network. The inclusion of this flaw in the KEV catalog underscores the real-world harm already being observed by security researchers and defenders.

In response to these active threats, defenders must prioritize patching. CISA has mandated that Federal Civilian Executive Branch (FCEB) agencies secure their systems against this vulnerability by the designated KEV remediation deadline. Private sector organizations are strongly urged to follow suit, reviewing their Check Point deployment logs for signs of unauthorized access and applying the latest security updates immediately.

AI-written article. Grounded in 1 CVE record listed below.