eol.network
Account
Home/Sophos/XG/Sophos XG 430

Sophos XG 430

SKU XG-series-appliance-XG-430

Sophos Appliance · XG Series

High confidence Official Sophos notice (KB-000035279) ↗ Verified
Sophos XG 430 is dead. Sophos support ended (-429d).

Is the Sophos XG 430 still supported?

No. Sophos ended support for the Sophos XG 430 on 2025-03-31. No further security fixes will be issued. See Sophos's lifecycle bulletin.

When does the Sophos XG 430 reach end of support?

Sophos support for the Sophos XG 430 ends on 2025-03-31.

What replaces the Sophos XG 430?

Sophos has not published a successor model for the Sophos XG 430.

What known-exploited CVEs apply to the Sophos XG 430 past end of support?

3 CVEs in CISA's Known Exploited Vulnerabilities catalog apply to the platform the Sophos XG 430 runs. These will not be patched on this device because it is past the Sophos security-support date. See the Known Exploited Vulnerabilities table below for the full list.

Known Exploited Vulnerabilities

This device is past Sophos's security-support date. 3 CVEs in CISA's Known Exploited Vulnerabilities catalog apply to the platform it runs. Sophos is not issuing patches for this model. Isolate, compensate, or refresh.

CVE KEV added Vulnerability Flags
CVE-2020-15069 Sophos XG Firewall Buffer Overflow Vulnerability
Advisory 1 Advisory 2
CVE-2022-3236 Sophos Firewall Code Injection Vulnerability
Advisory 1 Advisory 2
CVE-2022-1040 Sophos Firewall Authentication Bypass Vulnerability
Advisory 1

Source: CISA Known Exploited Vulnerabilities catalog. The Ransomware flag reflects CISA's own knownRansomwareCampaignUse field, set when the CVE has been observed in ransomware campaigns per their threat intel. It's not a property of the vulnerability description itself.

Correlation is at the platform level, not per-OS-version. Not exhaustive: KEV only lists actively-exploited CVEs and many relevant unexploited vulnerabilities are not here. Verify against vendor security advisories (PSIRT, JSA, PAN-SA) and NVD before acting. See compensating controls if refresh isn't immediate.

Sophos XG 430 Lifecycle Overview

The Sophos Sophos XG 430 (XG-series-appliance-XG-430) is a appliance product in the Sophos XG series. This product has reached end of life as of , meaning Sophos no longer provides technical support, software updates, or hardware replacement for this product. Organizations still running the Sophos XG 430 should plan a migration .

Lifecycle Milestones

Last order date 2y 2mo ago
Last date of support 1y 2mo ago

Other XG Series SKUs

Sunsetting around the same time

Other Sophos hardware reaching end of support near .

Applicable Platforms
XG
↑ Top