Fortinet black logo

Release Notes

Home FortiAnalyzer 7.4.2 Release Notes
7.4.2
7.4.2
7.4.1
7.4.0
7.2.5
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.0.12
7.0.11
7.0.10
7.0.9
7.0.8
7.0.7
7.0.6
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0
6.4.14
6.4.13
6.4.12
6.4.11
6.4.10
6.4.9
6.4.8
6.4.7
6.4.6
6.4.5
6.4.4
6.4.3
6.4.2
6.4.1
6.4.0
6.2.12
6.2.11
6.2.10
6.2.9
6.2.8
6.2.7
6.2.6
6.2.5
6.2.3
6.2.2
6.2.1
6.2.0
6.0.12
6.0.11
6.0.10
6.0.9
6.0.8
6.0.7
6.0.6
6.0.5
6.0.4
6.0.3
6.0.2
6.0.1
6.0.0
5.6.11
5.6.10
5.6.9
5.6.8
5.6.7
5.6.6
5.6.5
5.6.4
5.6.3
5.6.2
5.6.1
5.6.0
5.4.7
5.4.6
5.4.5
5.4.4
5.4.3
5.4.2
5.4.1
5.4.0
5.2.10
5.2.9
5.2.7
5.2.6
5.2.5
5.2.4
5.2.3
5.2.2
5.2.1
5.2.0
5.0.13
5.0.12
5.0.11
5.0.10
5.0.9
5.0.8
5.0.7
5.0.6
5.0.5
5.0.4
5.0.3
5.0.2
5.0.1
4.3.8

Resolved Issues

Resolved Issues

The following issues have been fixed in FortiAnalyzer version 7.4.2. To inquire about a particular bug, please contact Customer Service & Support.

Device Manager

Bug ID Description
861979 FortiAnalyzer generates "Invalid user/password for Security Fabric device in Device manager" even though the password is correct.

888797

The IP address is not updated on FortiAnalyzer when the FortiGate is forwarded from Collector mode FortiAnalyzer.

927113

FortiAnalyzer displays incorrect EMS server version, IP address, and connectivity status.

927747

Connectivity status of FortiMail/FortiClient EMS shows the status Unknown.

956536

Unable to add FortiNAC device to FortiAnalyzer.

Fabric View

Bug ID Description
924444 In the Fabric View, the Asset List download option is not functioning.

949748

MS_TEAMS & SERVICENOW Connectors are not available under the Automation Fabric View.

FortiSOC

Bug ID Description
783569 Automation Stitch Action "Ban IP" does not work on FortiGate because FortiAnalyzer did not send the srcip to FortiGate.

951343

The 'logdesc' log field message is sent incomplete.

959875

In the Playbook Monitor, the status of the default playbook Update Asset and Identity Database is displayed as failed.

FortiView

Bug ID Description
914317 The Monitor tab under FortiView displays an error message when querying certain Endpoints widgets.

946188

Unable to get more details about the Compromised Hosts in FortiView.

Log View

Bug ID Description

775185

Duplicated logs have the potential to adversely impact the overall performance of the FortiAnalyzer.
941273 When selecting a log attribute for filtering, no value options are provided.

961520

Log View does not display log entries as per the configured number per page.

967641

Intermittent and frequent issues occur when loading the Log View page. This happens when users click on the Log View pane, select FortiGates, or set filters.

974762

The horizontal scroll bar is missing from the detailed information window for events in Log View.

Others

Bug ID Description

812931

VIP access is not supported due to the new Azure API changes in HA VRRP.
893699 Login failed for restapi request due to invalid user/password.

922549

The FortiAnalyzer HA cluster synchronization is stuck at the 'HA_SYNC_STATE_SENDING_METADATA' status.
924123 FortiAnalyzer-1000F does not support FortiWeb-1000F.

933475

Logs of HA Secondary are not visible when the HA is a CSFs member.
942465 Excessive "oftpd process" usage may adversely affect the proper functioning of the FortiAnalyzer.
948471

Upon upgrading to FortiAnalyzer 7.4.1, analytical features like Log View, FortiView, and Reports are unavailable.

For more details, see "PostgreSQL database upgrade" in Special Notices for the FortiAnalyzer 7.4.1 Release Notes.

950115 When FortiAnalyzer forwards logs to a syslog server, quotation marks are missing for the field values.

950464

FortiAnalyzer under the event logs displays the following error message "Failed to upgrade alerts table FMGADOM118 from v5 to v6 ret=-1, reboot required."

950501

The execmd process enters the Zombie state causes temporary slowdown and unresponsiveness in the FortiAnalyzer GUI.
951791 Continuous crashes for the "fileparsed Application" on FortiAnalyzer HA have been observed.
952295 FortiAnalyzer does not remove the logs after forwarding then to the cloud storage.
957433 When creating the FortiManager/FortiAnalyzer docker instances, UUID is missing under the "diagnose debug vminfo".

965803

Due to some Redis-related issues, the diag log device command displays Information Not Available for all ADOMs, and newly generated reports are not visible on the GUI.

Reports

Bug ID Description

821783

Predefined Report User Detailed Browsing Log returns no matching data.
936084 No data shows up in report when filter applied to chart in FortiMail ADOM.

947800

The chart/dataset cannot be saved from chart builder.
948993 Export a report with custom datasets, and the datasets contents will be missing when importing it.

952229

Certain charts in the reports are not employing consistent session counting logic within the base hcache for FGT_DATASET_BASE_TRAFFIC_BANDWIDTH_SESSION. This inconsistency might result in inaccurate results.
952367 Cannot create Datasets for non-Fabric type ADOMs.

958246

When creating a new dataset, timestamps are not only displayed in epoch time but are also inaccurate.

System Settings

Bug ID Description

829015

Privacy Masking feature does not work properly for admins whose admin type utilizes Remote Authentication Server.

898944

When the ADOM name is changed, it does not update under the Log Forward in the Select Device Filter.
927773 When specific ADOMs are selected as Filters, Log Forwarding stops functioning.

934625

Adding devices to Log-forward filter creates duplicates of previously added devices.

941261

Users can't access the "Log Forwarding" section; it displays a "Failed to load" error message.

945233

Log Forwarding configuration is automatically disabled by FortiAnalyzer when it fails to resolve FQDN addresses due to DNS issues.
953842 Log Forwarding does not filter logs based on the specific ADOMs.

Common Vulnerabilities and Exposures

Visit https://fortiguard.com/psirt for more information.

Bug ID CVE references

944866

FortiAnalyzer 7.4.2 is no longer vulnerable to the following CVE Reference:

  • CVE-2023-44253

949991

FortiAnalyzer 7.4.2 is no longer vulnerable to the following CVE Reference:

  • CVE-2023-41842
Previous
Next

Resolved Issues

The following issues have been fixed in FortiAnalyzer version 7.4.2. To inquire about a particular bug, please contact Customer Service & Support.

Device Manager

Bug ID Description
861979 FortiAnalyzer generates "Invalid user/password for Security Fabric device in Device manager" even though the password is correct.

888797

The IP address is not updated on FortiAnalyzer when the FortiGate is forwarded from Collector mode FortiAnalyzer.

927113

FortiAnalyzer displays incorrect EMS server version, IP address, and connectivity status.

927747

Connectivity status of FortiMail/FortiClient EMS shows the status Unknown.

956536

Unable to add FortiNAC device to FortiAnalyzer.

Fabric View

Bug ID Description
924444 In the Fabric View, the Asset List download option is not functioning.

949748

MS_TEAMS & SERVICENOW Connectors are not available under the Automation Fabric View.

FortiSOC

Bug ID Description
783569 Automation Stitch Action "Ban IP" does not work on FortiGate because FortiAnalyzer did not send the srcip to FortiGate.

951343

The 'logdesc' log field message is sent incomplete.

959875

In the Playbook Monitor, the status of the default playbook Update Asset and Identity Database is displayed as failed.

FortiView

Bug ID Description
914317 The Monitor tab under FortiView displays an error message when querying certain Endpoints widgets.

946188

Unable to get more details about the Compromised Hosts in FortiView.

Log View

Bug ID Description

775185

Duplicated logs have the potential to adversely impact the overall performance of the FortiAnalyzer.
941273 When selecting a log attribute for filtering, no value options are provided.

961520

Log View does not display log entries as per the configured number per page.

967641

Intermittent and frequent issues occur when loading the Log View page. This happens when users click on the Log View pane, select FortiGates, or set filters.

974762

The horizontal scroll bar is missing from the detailed information window for events in Log View.

Others

Bug ID Description

812931

VIP access is not supported due to the new Azure API changes in HA VRRP.
893699 Login failed for restapi request due to invalid user/password.

922549

The FortiAnalyzer HA cluster synchronization is stuck at the 'HA_SYNC_STATE_SENDING_METADATA' status.
924123 FortiAnalyzer-1000F does not support FortiWeb-1000F.

933475

Logs of HA Secondary are not visible when the HA is a CSFs member.
942465 Excessive "oftpd process" usage may adversely affect the proper functioning of the FortiAnalyzer.
948471

Upon upgrading to FortiAnalyzer 7.4.1, analytical features like Log View, FortiView, and Reports are unavailable.

For more details, see "PostgreSQL database upgrade" in Special Notices for the FortiAnalyzer 7.4.1 Release Notes.

950115 When FortiAnalyzer forwards logs to a syslog server, quotation marks are missing for the field values.

950464

FortiAnalyzer under the event logs displays the following error message "Failed to upgrade alerts table FMGADOM118 from v5 to v6 ret=-1, reboot required."

950501

The execmd process enters the Zombie state causes temporary slowdown and unresponsiveness in the FortiAnalyzer GUI.
951791 Continuous crashes for the "fileparsed Application" on FortiAnalyzer HA have been observed.
952295 FortiAnalyzer does not remove the logs after forwarding then to the cloud storage.
957433 When creating the FortiManager/FortiAnalyzer docker instances, UUID is missing under the "diagnose debug vminfo".

965803

Due to some Redis-related issues, the diag log device command displays Information Not Available for all ADOMs, and newly generated reports are not visible on the GUI.

Reports

Bug ID Description

821783

Predefined Report User Detailed Browsing Log returns no matching data.
936084 No data shows up in report when filter applied to chart in FortiMail ADOM.

947800

The chart/dataset cannot be saved from chart builder.
948993 Export a report with custom datasets, and the datasets contents will be missing when importing it.

952229

Certain charts in the reports are not employing consistent session counting logic within the base hcache for FGT_DATASET_BASE_TRAFFIC_BANDWIDTH_SESSION. This inconsistency might result in inaccurate results.
952367 Cannot create Datasets for non-Fabric type ADOMs.

958246

When creating a new dataset, timestamps are not only displayed in epoch time but are also inaccurate.

System Settings

Bug ID Description

829015

Privacy Masking feature does not work properly for admins whose admin type utilizes Remote Authentication Server.

898944

When the ADOM name is changed, it does not update under the Log Forward in the Select Device Filter.
927773 When specific ADOMs are selected as Filters, Log Forwarding stops functioning.

934625

Adding devices to Log-forward filter creates duplicates of previously added devices.

941261

Users can't access the "Log Forwarding" section; it displays a "Failed to load" error message.

945233

Log Forwarding configuration is automatically disabled by FortiAnalyzer when it fails to resolve FQDN addresses due to DNS issues.
953842 Log Forwarding does not filter logs based on the specific ADOMs.

Common Vulnerabilities and Exposures

Visit https://fortiguard.com/psirt for more information.

Bug ID CVE references

944866

FortiAnalyzer 7.4.2 is no longer vulnerable to the following CVE Reference:

  • CVE-2023-44253

949991

FortiAnalyzer 7.4.2 is no longer vulnerable to the following CVE Reference:

  • CVE-2023-41842
Previous
Next