CVE-2025-10159

Sophos · AP6 Series Wireless Access Points

An authentication bypass vulnerability in Sophos AP6 Series Wireless Access Points before firmware 1.7.2563 (MR7) allows remote attackers to gain administrative privileges.

Executive summary

A critical authentication bypass in Sophos AP6 Series Wireless Access Points allows remote, unauthenticated attackers to gain full administrative control.

Vulnerability

This is an authentication bypass vulnerability that permits remote, unauthenticated attackers to gain administrative privileges on the device. This effectively grants an attacker full control over the wireless access point configuration and management.

Business impact

With a CVSS score of 9.8, this vulnerability represents an imminent threat to network integrity. An attacker gaining administrative access could intercept traffic, reconfigure network settings, or pivot into the internal network, leading to widespread unauthorized access and severe operational disruption.

Remediation

Immediate Action: Update all Sophos AP6 Series Wireless Access Points to firmware version 1.7.2563 (MR7) or later immediately.

Proactive Monitoring: Review management logs for unauthorized login attempts or configuration changes originating from unknown source IP addresses.

Compensating Controls: Restrict administrative access to the access points to a dedicated, isolated management VLAN that is not accessible from the public internet.

Exploitation status

Public Exploit Available: Unknown

Analyst recommendation

The severity of this flaw requires immediate attention, as it provides a direct path to administrative control of network infrastructure. Administrators should treat this as a high-priority update to prevent potential remote compromise of the wireless environment.