Check Point

Check Point Software Technologies is an Israeli network-security vendor founded in 1993, headquartered in Tel Aviv, and one of the largest dedicated cybersecurity companies globally by revenue. Its product portfolio spans network firewalls, unified threat management, cloud security, and the Remote Access VPN product line. In June 2026, Check Point disclosed that CVE-2026-50751, a CVSS 9.3 authentication bypass affecting its Remote Access VPN via a deprecated IKEv1 PATH, had been actively exploited for approximately one month before the hotfix shipped on 8 June. CISA added the flaw to the KEV catalogue on the same day with a three-day federal deadline of 11 June, the shortest KEV window recorded this cycle.

WatchTowr Labs published a working proof-of-concept identifying the root cause as CWE-1337: the gateway permits the client to self-assess credential validity, a design flaw rather than a coding error. Exploitation was confirmed at a few dozen organisations globally, with one Qilin ransomware affiliate confirmed in post-compromise activity. The Dutch NCSC warned of imminent large-scale abuse following the proof-of-concept release. Check Point Software Technologies is distinct from Check Point Research, its threat-intelligence Arm (a separate Lowdown entity), which produces public threat reporting independently of the product division.

Check Point is one of several major VPN and network security vendors to suffer a zero-day in 2025-2026, a period in which threat actors have systematically targeted perimeter devices as a preferred initial-access vector. The one-month pre-patch exploitation window reflects a challenge shared across the industry: detecting intrusion through authentication-bypass flaws before the vendor becomes aware of active exploitation.