eol.network
Account
Home/Sophos/XG/Sophos XG 125

Sophos XG 125

SKU XG-series-appliance-XG-125

Sophos Appliance · XG Series

High confidence Official Sophos notice (KB-000035279) ↗ Verified
Sophos XG 125 is dead. Sophos support ended (-429d).

Is the Sophos XG 125 still supported?

No. Sophos ended support for the Sophos XG 125 on 2025-03-31. No further security fixes will be issued. See Sophos's lifecycle bulletin.

When does the Sophos XG 125 reach end of support?

Sophos support for the Sophos XG 125 ends on 2025-03-31.

What replaces the Sophos XG 125?

Sophos has not published a successor model for the Sophos XG 125.

What known-exploited CVEs apply to the Sophos XG 125 past end of support?

3 CVEs in CISA's Known Exploited Vulnerabilities catalog apply to the platform the Sophos XG 125 runs. These will not be patched on this device because it is past the Sophos security-support date. See the Known Exploited Vulnerabilities table below for the full list.

Known Exploited Vulnerabilities

This device is past Sophos's security-support date. 3 CVEs in CISA's Known Exploited Vulnerabilities catalog apply to the platform it runs. Sophos is not issuing patches for this model. Isolate, compensate, or refresh.

CVE KEV added Vulnerability Flags
CVE-2020-15069 Sophos XG Firewall Buffer Overflow Vulnerability
Advisory 1 Advisory 2
CVE-2022-3236 Sophos Firewall Code Injection Vulnerability
Advisory 1 Advisory 2
CVE-2022-1040 Sophos Firewall Authentication Bypass Vulnerability
Advisory 1

Source: CISA Known Exploited Vulnerabilities catalog. The Ransomware flag reflects CISA's own knownRansomwareCampaignUse field, set when the CVE has been observed in ransomware campaigns per their threat intel. It's not a property of the vulnerability description itself.

Correlation is at the platform level, not per-OS-version. Not exhaustive: KEV only lists actively-exploited CVEs and many relevant unexploited vulnerabilities are not here. Verify against vendor security advisories (PSIRT, JSA, PAN-SA) and NVD before acting. See compensating controls if refresh isn't immediate.

Sophos XG 125 Lifecycle Overview

The Sophos Sophos XG 125 (XG-series-appliance-XG-125) is a appliance product in the Sophos XG series. This product has reached end of life as of , meaning Sophos no longer provides technical support, software updates, or hardware replacement for this product. Organizations still running the Sophos XG 125 should plan a migration .

Lifecycle Milestones

Last order date 2y 2mo ago
Last date of support 1y 2mo ago

Other XG Series SKUs

Sunsetting around the same time

Other Sophos hardware reaching end of support near .

Applicable Platforms
XG
↑ Top