a vpn authentication-bypass flaw in checkpoint products (cve-2026-50751) was exploited as a zero-day starting may 7 — more than a month before the june 9 advisory — by a qilin ransomware affiliate. the flaw in ikev1 certificate validation lets an attacker establish a full vpn session with no credentials. the long quiet exploitation window before public disclosure is the structurally notable part.