Check Point CVE-2026-50752 VPN IKEv1证书绕过漏洞及修复指南

漏洞概述 漏洞名称: CVE-2026-50752 漏洞类型: VPN site-to-site 证书绕过漏洞 影响版本: 使用已弃用的 IKEv1 密钥交换的 Check Point 安全网关和 Spark 防火墙 发现者: Check Point 安全研究团队 报告状态: 无已知利用 影响范围 受影响产品: - Security Gateways: R82.10 Jumbo Hotfix Take 19 或更低版本 - Spark Firewalls: R80.20.X (EOS), R81.10.X, R82.00.X 条件: - VPN site-to-site 已启用 - VPN 社区使用 IKEv1 - 网关参与 VPN 社区使用基于证书的认证（预共享密钥认证不受影响） - 网关不是动态 IP (DAIPI) 网关 - 社区不是大型规模 VPN (LSVP) 社区 修复方案 缓解措施: - 配置所有 VPN 社区使用 IKEv2 仅 - 对于 Security Gateways: 1. 在 SmartConsole 中打开 VPN 社区 2. 设置加密设置以使用 IKEv2 仅 3. 在社区中所有安全网关上安装策略 - 对于本地管理的 Spark 防火墙: 1. 在 Spark WebUI 中，转到 VPN > VPN Sites 2. 对于每个 VPN 站点，转到 Advanced 标签 3. 从下拉菜单中，将加密方法更改为 IKEv2 4. 点击 Save - 对于 Spark Management: 1. 在 Check Point Portal 中，转到 Spark Management 服务 2. 转到 COMMUNITY 3. 在 Community > VPN Settings 中，将加密方法更改为 IKEv2 4. 点击 Save 推荐步骤: - 安装 Jumbo Hotfix Accumulator - 适用于 R81.10 Jumbo Hotfix Accumulator Take 187 - 其他版本即将添加 下载链接 Security Gateway / Security Group Member: - R82.10 Jumbo Hotfix Accumulator Take 19 - R82.10 Jumbo Hotfix Accumulator Take 6 - R82 Jumbo Hotfix Accumulator Take 103 - R82 Jumbo Hotfix Accumulator Take 91 - R81.20 Jumbo Hotfix Accumulator Take 141 - R81.20 Jumbo Hotfix Accumulator Take 127 - R81.20 Jumbo Hotfix Accumulator Take 120 - R81.20 Jumbo Hotfix Accumulator Take 118 - R81.20 Jumbo Hotfix Accumulator Take 113 - R81.20 Jumbo Hotfix Accumulator Take 105 - R81.20 Jumbo Hotfix Accumulator Take 92 Check Point Spark Firewalls: - R82.00.10 Build 998002216 for Local Installation - R82.00.10 Build 998002216 for Central Deployment in SmartConsole - R82.00.10 Build 998002216 for SmartUpdate - R81.10.17 Build 996004901 for Local Installation - R81.10.17 Build 996004901 for Central Deployment in SmartConsole - R81.10.17 Build 996004901 for SmartUpdate 修订历史 2026-06-11: 添加推荐步骤 - R81.10 Jumbo Hotfix Accumulator Take 187 文章属性 访问级别: General 严重性: High 状态: Approved 创建日期: 2026-06-07 最后修改: 2026-06-11 页面反馈 是否有帮助: Yes / No 客户支持 未找到所需内容: 打开服务请求 页脚 版权声明: ©1994-2026 Check Point Software Technologies Ltd. All rights reserved. 隐私政策: Privacy Policy 社交媒体 关注我们: Instagram, Facebook, X, LinkedIn, YouTube 其他 获取演示: Get a Demo 联系销售: Contact Sales 支持: Support 登录: Log In 搜索: Search support articles, tools or guides. 解决方案 缓解措施: Configure all VPN communities to use IKEv2 only. 推荐步骤: Install Jumbo Hotfix Accumulator. 漏洞详情 漏洞描述: A vulnerability in the certificate validation logic of the deprecated IKEv1 key exchange method may lead to a man-in-the-middle attack on the VPN site-to-site configuration. 发现者: Check Point security research team. 报告状态: There are no reported exploits of this vulnerability. 受影响配置 版本: - Security Gateways: R82.10 Jumbo Hotfix Take 19 or below, R82 Jumbo Hotfix Take 103 or below, R81.20 Jumbo Hotfix Take 141 or below, R81.10 (EOS), R81 (EOS), R80.40 (EOS) - Spark Firewalls: R80.20.X (EOS), R81.10.X, R82.00.X 条件: - VPN site-to-site is enabled. - The VPN community uses IKEv1. - Gateways participating in the VPN community use certificate-based authentication (pre-shared key authentication is not affected). - Gateways are not Dynamic IP (DAIPI) gateways. - The community is not a Large Scale VPN (LSVP) community. 解决方案 缓解措施: Configure all VPN communities to use IKEv2 only. 推荐步骤: Install Jumbo Hotfix Accumulator. 下载链接 Security Gateway / Security Group Member: - R82.10 Jumbo Hotfix Accumulator Take 19 - R82.10 Jumbo Hotfix Accumulator Take 6 - R82 Jumbo Hotfix Accumulator Take 103 - R82 Jumbo Hotfix Accumulator Take 91 - R81.20 Jumbo Hotfix Accumulator Take 141 - R81.20 Jumbo Hotfix Accumulator Take 127 - R81.20 Jumbo Hotfix Accumulator Take 120 - R81.20 Jumbo Hotfix Accumulator Take 118 - R81.20 Jumbo Hotfix Accumulator Take 113 - R81.20 Jumbo Hotfix Accumulator Take 105 - R81.20 Jumbo Hotfix Accumulator Take 92 Check Point Spark Firewalls: - R82.00.10 Build 998002216 for Local Installation - R82.00.10 Build 998002216 for Central Deployment in SmartConsole - R82.00.10 Build 998002216 for SmartUpdate - R81.10.17 Build 996004901 for Local Installation - R81.10.17 Build 996004901 for Central Deployment in SmartConsole - R81.10.17 Build 996004901 for SmartUpdate 修订历史 2026-06-11: Added Recommended step - R81.10 Jumbo Hotfix Accumulator Take 187. 文章属性 访问级别: General 严重性: High 状态: Approved 创建日期: 2026-06-07 最后修改: 2026-06-11 页面反馈 是否有帮助: Yes / No 客户支持 未找到所需内容: 打开服务请求 页脚 版权声明: ©1994-2026 Check Point Software Technologies Ltd. All rights reserved. 隐私政策: Privacy Policy 社交媒体 关注我们: Instagram, Facebook, X, LinkedIn, YouTube 其他 获取演示: Get a Demo 联系销售: Contact Sales 支持: Support 登录: Log In 搜索: Search support articles, tools or guides. 解决方案 缓解措施: Configure all VPN communities to use IKEv2 only. 推荐步骤: Install Jumbo Hotfix Accumulator. 漏洞详情 漏洞描述: A vulnerability in the certificate validation logic of the deprecated IKEv1 key exchange method may lead to a man-in-the-middle attack on the VPN site-to-site configuration. 发现者: Check Point security research team. 报告状态: There are no reported exploits of this vulnerability. 受影响配置 版本: - Security Gateways: R82.10 Jumbo Hotfix Take 19 or

目标达成 感谢每一位支持者 — 我们达成了 100% 目标！

Check Point CVE-2026-50752 VPN IKEv1证书绕过漏洞及修复指南

目标达成感谢每一位支持者 — 我们达成了 100% 目标！