CyberRota
← Ana sayfaya dön

CVE-2026-50751

CRITICAL · CVSS 9.3 EPSS %71.05 CISA KEV · Aktif istismar

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-08T12:16:32.367 · Çekilme zamanı: 2026-06-30T12:12:38.156659+00:00

CyberRota Yorumu

Uzaktan istismar edilebilir olabilir.

CISA KEV Bilgisi

Durum: Bu CVE, sahada aktif istismar edilmiş açıklar katalogunda yer alıyor.

Ransomware Kullanımı: Known

KEV Eklenme Tarihi: 2026-06-08

Önerilen Aksiyon: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

CVE
CVE-2026-50751
Severity
CRITICAL
CVSS
9.3
EPSS
%71.05
Exchange

Orijinal NVD Açıklaması

A logic flow weakness in Remote Access and Mobile Access certificate validation in deprecated IKEv1 key exchange allows an unauthenticated remote attacker to bypass user authentication and establish a remote access VPN connection without a valid user password.