A vulnerability identified as problematic has been detected in Check Point Quantum Security Gateway . The impacted element is an unknown function of the component Browser-based Authentication . This manipulation causes improper control of filename for include/require statement in php program ('php remote file inclusion'). This vulnerability is tracked as CVE-2026-48133 . The attack is possible to be carried out remotely. No exploit exists.