Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
All Products
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Web Application Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • Web Application / API Protection
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions
    • All Products

    Release Notes

    Home FortiADC 7.6.2 Release Notes
    7.6.2
    8.0.2
    8.0.1
    8.0.0
    7.6.5
    7.6.4
    7.6.3
    7.6.2
    7.6.1
    7.6.0
    7.4.9
    7.4.8
    7.4.7
    7.4.6
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.1.5
    7.1.4
    7.1.3
    7.1.2
    7.1.1
    7.1.0
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.2.6
    6.2.5
    6.2.4
    6.2.3
    6.2.2
    6.2.1
    6.2.0
    6.1.6
    6.1.5
    6.1.4
    6.1.3
    6.1.2
    6.1.1
    6.1.0
    6.0.4
    6.0.3
    6.0.2
    6.0.1
    6.0.0
    5.4.4
    5.4.4
    5.4.3
    5.4.2
    5.4.1
    5.4.0
    5.3.7
    5.3.6
    5.3.5
    5.3.4
    5.3.3
    5.3.2
    5.3.1
    5.3.0
    5.2.8
    5.2.7
    5.2.6
    5.2.5
    5.2.4
    5.2.3
    5.2.2
    5.2.1
    5.2.0
    5.1.7
    5.1.6
    5.1.5
    5.1.4
    5.1.3
    5.1.2
    5.1.1
    5.1.0
    5.0.4
    5.0.3
    5.0.2
    5.0.1
    5.0.0
    4.8.8
    4.8.7
    4.8.6
    4.8.5
    4.8.4
    4.8.3
    4.8.2
    4.8.1
    4.8.0
    4.7.4
    4.7.3
    4.7.2
    4.7.1

    Resolved issues

    Resolved issues

    The following issues have been resolved in FortiADC 7.6.2 release. For inquiries about particular bugs, please contact Fortinet Customer Service & Support.

    Bug ID

    Description

    1145394

    Configured DNS settings are overridden by default nameserver in AWS.
    1133903 FortiADC 300D fails to establish a connection with FortiAnalyzer, preventing log forwarding and analytics integration.
    1131903 FortiADC returns <MISSING> in the SNMP response for sysinfo queries, resulting in incomplete system information retrieval.
    1127248 Azure VM continuously reloads when the licensed instance size is smaller than the actual VM size, preventing stable operation.
    1122454 Certificates are incorrectly deleted from the Local Certificate group when ACME encounters group members with missing or invalid IDs
    1120679 Oracle health check stops working due to a memory leak caused by unfreed lists and buffers after pthread_kill, leading to resource exhaustion over time.
    1120666 After upgrading from 7.4.x to 7.6.1, the GUI incorrectly displays the hardware license status as "Unknown support (Expires: Unknown)", despite valid licensing.
    1120243 FortiADC 1200F reports incorrect traffic and packet counter values in SNMP and CLI due to improper interface name handling, leading to discrepancies in monitoring data.
    1119257 HA fails to establish between FortiADC nodes on firmware version 7.4.7 B0378 due to heartbeat message decoding errors, preventing synchronization between FortiADC-1 and FortiADC-2 KVM nodes.
    1118172 GeoIP database upgrade fails if the version exceeds 256, causing manual import failures and HA secondary sync issues due to improper version validation.
    1116520 HTTP/2 requests to a specific URL result in timeouts, whereas HTTP/1.1 works without issue. This is due to delays in data transmission caused by HTTP/2 waiting for window updates. Internal adjustments to httproxy's send-state flags were made to improve alignment with HTTP/2 flow control, reducing the likelihood of transmission stalls due to insufficient window size.
    1116460 Memory issue due to unfreed LDAP structures before each check, leading to incremental memory usage increase and process termination.

    1115210

    Remote LDAP authentication fails when accessing via ConsolePort, as the admin_auth function is not triggered during login.

    1114401

    Request to increase maximum request header value length limit.

    1112914

    FortiADC attempts to connect to 8.8.8.8 on port 53 when the DNS is configured to 0.0.0.0, despite the DNS setting being invalid.

    1106109

    Connected route not displaying in HA-VRRP due to insufficient rtmd receiving buffer size configuration.

    1103348

    FortiADC AntiVirus does not block the EICAR file during upload (HTTP PUT), but can block it during download (HTTP GET) due to lack of support for scanning HTTP PUT traffic.

    1100931

    FortiADC L4 VS drops packets aggregated by the Generic Receive Offload (GRO) layer at ingress, causing packet loss.

    1100897

    The documentation needs to be updated to clarify that the "Clear" button is not available in the "All Sessions" section under FortiView.

    1096464

    FortiADC's SSH server public key length is insufficient. The recommended minimum RSA public key length is 2048 bits or greater.

    1095322

    SNMPv3 is not responding to the usmStatsNotInTimeWindows OID (.1.3.6.1.6.3.15.1.1.2.0), resulting in a failure to report the expected SNMP statistics.

    1093020

    REST-API allows token brute-force attacks and does not log failed login attempts, leading to potential security vulnerabilities.

    1091639

    Local certificate import fails when the passphrase for the private key contains a backslash (), which is not handled properly.
    1091469 Health check status is not properly updated on the secondary device after an HA failover. When the secondary device is promoted to primary, the status in the logical topology is not reflected correctly, leading to a lack of visibility on service availability and no alerts for service changes.
    Common Vulnerabilities and Exposures

    For more information, visit https://www.fortiguard.com/psirt.

    Bug ID

    Description
    1129749 FortiADC 7.6.2 is no longer vulnerable to the following CVE-Reference: CVE-2025-26466.
    Previous
    Next

    Resolved issues

    Resolved issues

    The following issues have been resolved in FortiADC 7.6.2 release. For inquiries about particular bugs, please contact Fortinet Customer Service & Support.

    Bug ID

    Description

    1145394

    Configured DNS settings are overridden by default nameserver in AWS.
    1133903 FortiADC 300D fails to establish a connection with FortiAnalyzer, preventing log forwarding and analytics integration.
    1131903 FortiADC returns <MISSING> in the SNMP response for sysinfo queries, resulting in incomplete system information retrieval.
    1127248 Azure VM continuously reloads when the licensed instance size is smaller than the actual VM size, preventing stable operation.
    1122454 Certificates are incorrectly deleted from the Local Certificate group when ACME encounters group members with missing or invalid IDs
    1120679 Oracle health check stops working due to a memory leak caused by unfreed lists and buffers after pthread_kill, leading to resource exhaustion over time.
    1120666 After upgrading from 7.4.x to 7.6.1, the GUI incorrectly displays the hardware license status as "Unknown support (Expires: Unknown)", despite valid licensing.
    1120243 FortiADC 1200F reports incorrect traffic and packet counter values in SNMP and CLI due to improper interface name handling, leading to discrepancies in monitoring data.
    1119257 HA fails to establish between FortiADC nodes on firmware version 7.4.7 B0378 due to heartbeat message decoding errors, preventing synchronization between FortiADC-1 and FortiADC-2 KVM nodes.
    1118172 GeoIP database upgrade fails if the version exceeds 256, causing manual import failures and HA secondary sync issues due to improper version validation.
    1116520 HTTP/2 requests to a specific URL result in timeouts, whereas HTTP/1.1 works without issue. This is due to delays in data transmission caused by HTTP/2 waiting for window updates. Internal adjustments to httproxy's send-state flags were made to improve alignment with HTTP/2 flow control, reducing the likelihood of transmission stalls due to insufficient window size.
    1116460 Memory issue due to unfreed LDAP structures before each check, leading to incremental memory usage increase and process termination.

    1115210

    Remote LDAP authentication fails when accessing via ConsolePort, as the admin_auth function is not triggered during login.

    1114401

    Request to increase maximum request header value length limit.

    1112914

    FortiADC attempts to connect to 8.8.8.8 on port 53 when the DNS is configured to 0.0.0.0, despite the DNS setting being invalid.

    1106109

    Connected route not displaying in HA-VRRP due to insufficient rtmd receiving buffer size configuration.

    1103348

    FortiADC AntiVirus does not block the EICAR file during upload (HTTP PUT), but can block it during download (HTTP GET) due to lack of support for scanning HTTP PUT traffic.

    1100931

    FortiADC L4 VS drops packets aggregated by the Generic Receive Offload (GRO) layer at ingress, causing packet loss.

    1100897

    The documentation needs to be updated to clarify that the "Clear" button is not available in the "All Sessions" section under FortiView.

    1096464

    FortiADC's SSH server public key length is insufficient. The recommended minimum RSA public key length is 2048 bits or greater.

    1095322

    SNMPv3 is not responding to the usmStatsNotInTimeWindows OID (.1.3.6.1.6.3.15.1.1.2.0), resulting in a failure to report the expected SNMP statistics.

    1093020

    REST-API allows token brute-force attacks and does not log failed login attempts, leading to potential security vulnerabilities.

    1091639

    Local certificate import fails when the passphrase for the private key contains a backslash (), which is not handled properly.
    1091469 Health check status is not properly updated on the secondary device after an HA failover. When the secondary device is promoted to primary, the status in the logical topology is not reflected correctly, leading to a lack of visibility on service availability and no alerts for service changes.
    Common Vulnerabilities and Exposures

    For more information, visit https://www.fortiguard.com/psirt.

    Bug ID

    Description
    1129749 FortiADC 7.6.2 is no longer vulnerable to the following CVE-Reference: CVE-2025-26466.
    Previous
    Next