Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • FortiOS Release Notes

    Home FortiGate / FortiOS 7.2.3 FortiOS Release Notes
    7.2.3
    7.6.1
    7.6.0
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.10
    7.2.9
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.16
    7.0.15
    7.0.14
    7.0.13
    7.0.12
    7.0.11
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.4.15
    6.4.14
    6.4.13
    6.4.12
    6.4.11
    6.4.10
    6.4.9
    6.4.8
    6.4.7
    6.4.6
    6.4.5
    6.4.4
    6.4.3
    6.4.2
    6.4.1
    6.4.0
    6.2.16
    6.2.15
    6.2.14
    6.2.13
    6.2.12
    6.2.11
    6.2.10
    6.2.9
    6.2.8
    6.2.7
    6.2.6
    6.2.5
    6.2.4
    6.2.3
    6.2.2
    6.2.1
    6.2.0
    6.0.18
    6.0.17
    6.0.16
    6.0.15
    6.0.14
    6.0.13
    6.0.12
    6.0.11
    6.0.10
    6.0.9
    6.0.8
    6.0.7
    6.0.6
    6.0.5
    6.0.4
    6.0.3
    6.0.2
    6.0.1
    6.0.0
    5.6.14
    5.6.13
    5.6.12
    5.6.11
    5.6.10
    5.6.9
    5.6.8
    5.6.7
    5.6.6
    5.6.5
    5.6.4
    5.6.3
    5.6.2
    5.6.1
    5.6.0
    5.4.13
    5.4.12
    5.4.11
    5.4.10
    5.4.9
    5.4.8
    5.4.7
    5.4.6
    5.4.5
    5.4.4
    5.4.3
    5.4.2
    5.4.1
    5.4.0
    5.2.15
    5.2.14
    5.2.13
    5.2.12
    5.2.11
    5.2.10
    5.2.9
    5.2.8
    5.2.7
    5.2.6
    5.2.5
    5.2.4
    5.2.3
    5.2.2
    5.2.1
    5.2.0
    5.0.14
    5.0.13
    5.0.12
    5.0.11
    5.0.10
    5.0.9
    5.0.8
    5.0.7
    5.0.6
    5.0.5
    5.0.4
    5.0.3
    5.0.2

    Resolved issues

    Resolved issues

    The following issues have been fixed in version 7.2.3. To inquire about a particular bug, please contact Customer Service & Support.

    Anti Virus

    Bug ID

    Description

    794575

    If FortiGate Cloud is selected as sandbox server under Security Fabric > Fabric Connectors, an anti virus profile with settings to Send files to FortiSandbox for inspection does not get saved in the GUI.

    Application Control

    Bug ID

    Description

    849310

    If the Vimeo_Video.Play signature is set to monitor, the log is missing the filename field and video name.

    Explicit Proxy

    Bug ID

    Description

    803228

    When converting an explicit proxy session to SSL redirect, traffic may be interrupted inadvertently in some situations.

    GUI

    Bug ID

    Description

    829313

    The dropdown field for the IdP Certificate is empty when editing an SSO user configuration (User & Authentication > Single Sign-On), even though the summary shows an IdP certificate.

    835089

    Unable to move SD-WAN rule ordering in the GUI (FortiOS 7.2.1).

    HA

    Bug ID

    Description

    823687

    A cluster is repeatedly out-of sync due to external files (SSLVPN_AUTH_GROUPS) when there are frequent user logins and logouts.

    IPsec VPN

    Bug ID

    Description

    765868

    The packets did not pass through QTM, and SYN packets bypass the IPsec tunnel once traffic is offloaded. Affected platforms: NP7 models.

    Log & Report

    Bug ID

    Description

    789007

    Unable to select FortiAnalyzer as a data source on the Summary tab for the System Events and Security Events pages.

    826431

    FortiGate Cloud log viewer shows no results for the 5 minutes and 1 hour time period due to an incorrect timestamp (24 hours is OK).

    Proxy

    Bug ID

    Description

    780182

    WAD crash occurred when forwarding the release bytes from the IPS engine to the server and the connection to the server is closed.

    825496

    Explicit proxy traffic is terminated when IPS is enabled. The exact failure happened upon certificate inspection.

    836198

    Console randomly displays a read_tagbuf - 152: Failed to open device: /dev/sdb errno:2(No such file or directory) error.

    Routing

    Bug ID

    Description

    822659

    Secure SD-WAN Monitor in FortiAnalyzer does not show graphs when the SLA target is not configured in SD-WAN performance SLA.

    SSL VPN

    Bug ID

    Description

    848437

    The sslvpn process crashes if a POST request with a body greater than 2 GB is received.

    856316

    Browser displays an Error, Feature is not available message if a file larger than 1 MB is uploaded from FTP or SMB using a web bookmark, even though the file is uploaded successfully. There are no issues with downloading files.

    System

    Bug ID

    Description

    784169

    When a virtual switch member port is set to be an alternate by STP, it should not reply with ARP; otherwise, the connected device will learn the MAC address from the alternate port and send subsequent packets to the alternate port.

    810879

    DoS policy ID cannot be moved in GUI and CLI when enabling multiple DoS policies.

    855151

    There may be a race condition between the CMDB initializing and the customer language file loading, which causes the customer language file to be removed after upgrading.

    User & Authentication

    Bug ID

    Description

    822923

    When a device is detected as vulnerable, its source is not set and the inventory query quits.

    827458

    A User device store query error (error code: -1) warning appears on the Asset Identity Center page.

    WiFi Controller

    Bug ID

    Description

    821803

    Wireless multicast traffic causes the cw_acd process to have high CPU usage and triggers a hostapd crash.

    Common Vulnerabilities and Exposures

    Visit https://fortiguard.com/psirt for more information.

    Bug ID

    CVE references

    843324

    FortiOS 7.2.3 is no longer vulnerable to the following CVE Reference:

    • CVE-2022-42472

    850842

    FortiOS 7.2.3 is no longer vulnerable to the following CVE Reference:

    • CVE-2022-41335

    853448

    FortiOS 7.2.3 is no longer vulnerable to the following CVE Reference:

    • CVE-2022-42475

    855446

    FortiOS 7.2.3 is no longer vulnerable to the following CVE References:

    • CVE-2022-3602
    • CVE-2022-3786
    Previous
    Next

    Resolved issues

    Resolved issues

    The following issues have been fixed in version 7.2.3. To inquire about a particular bug, please contact Customer Service & Support.

    Anti Virus

    Bug ID

    Description

    794575

    If FortiGate Cloud is selected as sandbox server under Security Fabric > Fabric Connectors, an anti virus profile with settings to Send files to FortiSandbox for inspection does not get saved in the GUI.

    Application Control

    Bug ID

    Description

    849310

    If the Vimeo_Video.Play signature is set to monitor, the log is missing the filename field and video name.

    Explicit Proxy

    Bug ID

    Description

    803228

    When converting an explicit proxy session to SSL redirect, traffic may be interrupted inadvertently in some situations.

    GUI

    Bug ID

    Description

    829313

    The dropdown field for the IdP Certificate is empty when editing an SSO user configuration (User & Authentication > Single Sign-On), even though the summary shows an IdP certificate.

    835089

    Unable to move SD-WAN rule ordering in the GUI (FortiOS 7.2.1).

    HA

    Bug ID

    Description

    823687

    A cluster is repeatedly out-of sync due to external files (SSLVPN_AUTH_GROUPS) when there are frequent user logins and logouts.

    IPsec VPN

    Bug ID

    Description

    765868

    The packets did not pass through QTM, and SYN packets bypass the IPsec tunnel once traffic is offloaded. Affected platforms: NP7 models.

    Log & Report

    Bug ID

    Description

    789007

    Unable to select FortiAnalyzer as a data source on the Summary tab for the System Events and Security Events pages.

    826431

    FortiGate Cloud log viewer shows no results for the 5 minutes and 1 hour time period due to an incorrect timestamp (24 hours is OK).

    Proxy

    Bug ID

    Description

    780182

    WAD crash occurred when forwarding the release bytes from the IPS engine to the server and the connection to the server is closed.

    825496

    Explicit proxy traffic is terminated when IPS is enabled. The exact failure happened upon certificate inspection.

    836198

    Console randomly displays a read_tagbuf - 152: Failed to open device: /dev/sdb errno:2(No such file or directory) error.

    Routing

    Bug ID

    Description

    822659

    Secure SD-WAN Monitor in FortiAnalyzer does not show graphs when the SLA target is not configured in SD-WAN performance SLA.

    SSL VPN

    Bug ID

    Description

    848437

    The sslvpn process crashes if a POST request with a body greater than 2 GB is received.

    856316

    Browser displays an Error, Feature is not available message if a file larger than 1 MB is uploaded from FTP or SMB using a web bookmark, even though the file is uploaded successfully. There are no issues with downloading files.

    System

    Bug ID

    Description

    784169

    When a virtual switch member port is set to be an alternate by STP, it should not reply with ARP; otherwise, the connected device will learn the MAC address from the alternate port and send subsequent packets to the alternate port.

    810879

    DoS policy ID cannot be moved in GUI and CLI when enabling multiple DoS policies.

    855151

    There may be a race condition between the CMDB initializing and the customer language file loading, which causes the customer language file to be removed after upgrading.

    User & Authentication

    Bug ID

    Description

    822923

    When a device is detected as vulnerable, its source is not set and the inventory query quits.

    827458

    A User device store query error (error code: -1) warning appears on the Asset Identity Center page.

    WiFi Controller

    Bug ID

    Description

    821803

    Wireless multicast traffic causes the cw_acd process to have high CPU usage and triggers a hostapd crash.

    Common Vulnerabilities and Exposures

    Visit https://fortiguard.com/psirt for more information.

    Bug ID

    CVE references

    843324

    FortiOS 7.2.3 is no longer vulnerable to the following CVE Reference:

    • CVE-2022-42472

    850842

    FortiOS 7.2.3 is no longer vulnerable to the following CVE Reference:

    • CVE-2022-41335

    853448

    FortiOS 7.2.3 is no longer vulnerable to the following CVE Reference:

    • CVE-2022-42475

    855446

    FortiOS 7.2.3 is no longer vulnerable to the following CVE References:

    • CVE-2022-3602
    • CVE-2022-3786
    Previous
    Next