Fortinet black logo

Resolved issues

Resolved issues

The following issues have been fixed in version 7.0.3. For inquiries about a particular bug, contact Customer Service & Support.

Zero Trust Telemetry

Bug ID

Description

765348 FortiClient (Windows) detects invalid certificate after FortiClient (Windows) upgrade.

GUI

Bug ID

Description

751299 FortiClient (Windows) has empty vulnerability details tab.
765714 FortiClient (Windows) shows encryption as disabled when EMS-pushed rule has encryption enabled.

Endpoint control

Bug ID Description
742070 FortiClient is stuck syncing and cannot be manually reconnected.

751728

FortiClient (Windows) does not automatically connect to EMS after manual FortiClient (Windows) upgrade.

757985

EMS group assignment rule does not work.

Install and deployment

Bug ID

Description

716597 Install using norestart parameter requires reboot.
742508 You can uninstall FortiClient (Windows) using CCleaner when Require password for Disconnect is enabled.

Application Firewall

Bug ID

Description

663024 Add VMware Horizon virtual desktop infrastructure agent signature on Application Firewall.

Zero Trust tags

Bug ID

Description

652897 FortiClient (Windows) tags endpoint as vulnerable when EMS has enabled Exclude Application Vulnerabilities Requiring Manual Update from Vulnerability.

683099

Host tagging rule for 2019 operating system version does not work.

726729

Windows firewall Zero Trust tagging rule does not tag FortiClient (Windows) when Web Filter is enabled via a group policy object (GPO).

Malware Protection and Sandbox

Bug ID

Description

688725 Add browser support for new antiexploit.
693565 Chrome cannot rename temporary download files because Sandbox agent locks them.
700298 FortiClient (Windows) does not submit zip files larger than 200 MB to FortiSandbox.
700396 FortiClient (Windows) cannot load the device driver (code 38).
709729 Realtime_scan log disappears after ten seconds.
713557 Antiexploit exceptions do not work.
725936 FortiClient compatibility with USB key.
734993 Rule to block removable media (USB drive) stops working.
737561 Files quarantined on client do not sync with FortiClient Cloud.
754593 Removable media access does not work for selected devices.
759271 FortiClient fails to quarantine a read-only file.
759692 Removable media access does not block camera.

FSSO

Bug ID

Description

683213 FortiClient SSO Mobility Agent does not update logon events/IP address changes to FortiAuthenticator and intermittently fails to send information.

Remote Access

Bug ID

Description

599924 Certificate-based IKEv2 cannot connect with extensible authentication protocol disabled.
637303 Configuring certificate-only SSL VPN tunnel displays Empty username is not allowed error.
639981 SAML login on FortiClient (Windows) does not work when PKI group and SAML group are assigned to SSL VPN policy together.
684913 SAML authentication on SSL VPN with realms does not work.
685959 When Windows starts, machine IPsec VPN does not connect.
692823 Split DNS tunnel has resolution time of more than 30 seconds.
693611 FortiClient (Windows) fails to show correct current connection.
698713 You can update an SSL VPN user's password without entering the same password to confirm it.
700440 Application-based split tunnel does not work.
707882 IPsec VPN fails to autoconnect with Failed to launch IPsec service error.
710877 SSL VPN with SAML (Azure Active Directory (AD)) and two gateways does not work.
716323 FortiClient (Windows) cannot connect to IPsec VPN and shows no response from GUI.
716952 On connect script for Windows does not always execute.
717100 MTU issues when DTLS is enabled and client network tunnels IPv4 over IPv6.
721651 When connected to a full VPN to FortiGate, FortiClient sends virtual IP and MAC addresses to EMS.
724092 match_type does not work when using VPN before logon.
726249 FortiClient (Windows) cannot exempt the trusted fully qualified domain names and trusted local applications effectively from FortiSASE VPN.
726680 VPN client takes 20 seconds to disconnect.
727967 FortiClient (Windows) should not resend authentication request after SAML login.
731011 FortiClient (Windows) gets stuck at 98% connecting to SSL VPN tunnel when integrated with SAML (Azure AD) authentication.
732594 SSL VPN redundant_sort_method does not work with realms.
735096 Remove old SSL VPN driverpppop64.sys.
740410 FortiClient (Windows) applies client-cert to unmatched SSL VPN mapping.
742833 Machine VPN before logon does not connect anymore after update from 7.0.0 to 7.0.1.
744945 VPN before logon cannot connect before Windows logon, so the GPO cannot commit before logon.
750008 FortiClient caches username for VPN tunnel when it is configured not to.
751430 Split tunnel, split DNS, and remote DNS server resolution do not work.
754820 Host check Enable for Firewall only does not work.
764730 FortiClient cannot enable the dual-stack IPv4/IPv6 from EMS using <dual_stack>.
771369 SSL VPN autoconnect does not work sometimes.

Web Filter and plugin

Bug ID

Description

647955

FortiClient (Windows) is involved in traffic when Web Filter is enabled.

740802 Web Filter has many unknown category denylist results.

760972

Chrome pauses file download until user manually resumes it.

Other

Bug ID

Description

722624 Windows 10 21H1 upgrade causes blue screen of death (BSOD) (SYSTEM_SCAN_AT_RAISED_IRQL_CAUGHT_IMPROPER_DRIVER_UNLOAD) FortiTransCtrl.sys.
725631 Network interfaces on laptops with Windows 10 stay unavailable after hibernation or sleep.
733704 BSOD Fortips.sys.
737917 FortiClient support for Windows 11.
772310 Shutting down FortiTray from command prompt does not work.

749458

When logging in to FortiClient (Windows) using a Google account, FortiClient (Windows) shows a specific unofficial email address.

Common Vulnerabilities and Exposures

Bug ID

Description

637256

FortiClient (Windows) 7.0.3 is no longer vulnerable to the following CVE Reference:

  • CVE-2021-36183

Visit https://fortiguard.com/psirt for more information.

721745

FortiClient (Windows) 7.0.3 is no longer vulnerable to the following CVE Reference:

  • CVE-2021-41028

Visit https://fortiguard.com/psirt for more information.

Resolved issues

The following issues have been fixed in version 7.0.3. For inquiries about a particular bug, contact Customer Service & Support.

Zero Trust Telemetry

Bug ID

Description

765348 FortiClient (Windows) detects invalid certificate after FortiClient (Windows) upgrade.

GUI

Bug ID

Description

751299 FortiClient (Windows) has empty vulnerability details tab.
765714 FortiClient (Windows) shows encryption as disabled when EMS-pushed rule has encryption enabled.

Endpoint control

Bug ID Description
742070 FortiClient is stuck syncing and cannot be manually reconnected.

751728

FortiClient (Windows) does not automatically connect to EMS after manual FortiClient (Windows) upgrade.

757985

EMS group assignment rule does not work.

Install and deployment

Bug ID

Description

716597 Install using norestart parameter requires reboot.
742508 You can uninstall FortiClient (Windows) using CCleaner when Require password for Disconnect is enabled.

Application Firewall

Bug ID

Description

663024 Add VMware Horizon virtual desktop infrastructure agent signature on Application Firewall.

Zero Trust tags

Bug ID

Description

652897 FortiClient (Windows) tags endpoint as vulnerable when EMS has enabled Exclude Application Vulnerabilities Requiring Manual Update from Vulnerability.

683099

Host tagging rule for 2019 operating system version does not work.

726729

Windows firewall Zero Trust tagging rule does not tag FortiClient (Windows) when Web Filter is enabled via a group policy object (GPO).

Malware Protection and Sandbox

Bug ID

Description

688725 Add browser support for new antiexploit.
693565 Chrome cannot rename temporary download files because Sandbox agent locks them.
700298 FortiClient (Windows) does not submit zip files larger than 200 MB to FortiSandbox.
700396 FortiClient (Windows) cannot load the device driver (code 38).
709729 Realtime_scan log disappears after ten seconds.
713557 Antiexploit exceptions do not work.
725936 FortiClient compatibility with USB key.
734993 Rule to block removable media (USB drive) stops working.
737561 Files quarantined on client do not sync with FortiClient Cloud.
754593 Removable media access does not work for selected devices.
759271 FortiClient fails to quarantine a read-only file.
759692 Removable media access does not block camera.

FSSO

Bug ID

Description

683213 FortiClient SSO Mobility Agent does not update logon events/IP address changes to FortiAuthenticator and intermittently fails to send information.

Remote Access

Bug ID

Description

599924 Certificate-based IKEv2 cannot connect with extensible authentication protocol disabled.
637303 Configuring certificate-only SSL VPN tunnel displays Empty username is not allowed error.
639981 SAML login on FortiClient (Windows) does not work when PKI group and SAML group are assigned to SSL VPN policy together.
684913 SAML authentication on SSL VPN with realms does not work.
685959 When Windows starts, machine IPsec VPN does not connect.
692823 Split DNS tunnel has resolution time of more than 30 seconds.
693611 FortiClient (Windows) fails to show correct current connection.
698713 You can update an SSL VPN user's password without entering the same password to confirm it.
700440 Application-based split tunnel does not work.
707882 IPsec VPN fails to autoconnect with Failed to launch IPsec service error.
710877 SSL VPN with SAML (Azure Active Directory (AD)) and two gateways does not work.
716323 FortiClient (Windows) cannot connect to IPsec VPN and shows no response from GUI.
716952 On connect script for Windows does not always execute.
717100 MTU issues when DTLS is enabled and client network tunnels IPv4 over IPv6.
721651 When connected to a full VPN to FortiGate, FortiClient sends virtual IP and MAC addresses to EMS.
724092 match_type does not work when using VPN before logon.
726249 FortiClient (Windows) cannot exempt the trusted fully qualified domain names and trusted local applications effectively from FortiSASE VPN.
726680 VPN client takes 20 seconds to disconnect.
727967 FortiClient (Windows) should not resend authentication request after SAML login.
731011 FortiClient (Windows) gets stuck at 98% connecting to SSL VPN tunnel when integrated with SAML (Azure AD) authentication.
732594 SSL VPN redundant_sort_method does not work with realms.
735096 Remove old SSL VPN driverpppop64.sys.
740410 FortiClient (Windows) applies client-cert to unmatched SSL VPN mapping.
742833 Machine VPN before logon does not connect anymore after update from 7.0.0 to 7.0.1.
744945 VPN before logon cannot connect before Windows logon, so the GPO cannot commit before logon.
750008 FortiClient caches username for VPN tunnel when it is configured not to.
751430 Split tunnel, split DNS, and remote DNS server resolution do not work.
754820 Host check Enable for Firewall only does not work.
764730 FortiClient cannot enable the dual-stack IPv4/IPv6 from EMS using <dual_stack>.
771369 SSL VPN autoconnect does not work sometimes.

Web Filter and plugin

Bug ID

Description

647955

FortiClient (Windows) is involved in traffic when Web Filter is enabled.

740802 Web Filter has many unknown category denylist results.

760972

Chrome pauses file download until user manually resumes it.

Other

Bug ID

Description

722624 Windows 10 21H1 upgrade causes blue screen of death (BSOD) (SYSTEM_SCAN_AT_RAISED_IRQL_CAUGHT_IMPROPER_DRIVER_UNLOAD) FortiTransCtrl.sys.
725631 Network interfaces on laptops with Windows 10 stay unavailable after hibernation or sleep.
733704 BSOD Fortips.sys.
737917 FortiClient support for Windows 11.
772310 Shutting down FortiTray from command prompt does not work.

749458

When logging in to FortiClient (Windows) using a Google account, FortiClient (Windows) shows a specific unofficial email address.

Common Vulnerabilities and Exposures

Bug ID

Description

637256

FortiClient (Windows) 7.0.3 is no longer vulnerable to the following CVE Reference:

  • CVE-2021-36183

Visit https://fortiguard.com/psirt for more information.

721745

FortiClient (Windows) 7.0.3 is no longer vulnerable to the following CVE Reference:

  • CVE-2021-41028

Visit https://fortiguard.com/psirt for more information.