Files cannot be uploaded to FortiSanbox Cloud for inspection and all the files are incorrectly displayed with the same file size.

Content filter cannot detect *.hta files for certain types of email.

When "Detect on failure to decompress" is enabled in the content profile, the .zip files may cause false positives.

Policy match issue with LDAP verified domains.

Unable to delete dynamic impersonation database entries with special characters in the Display Name.

Issues when scanning PDF files.

Impersonation Analysis false positives.

URL click protection does not work properly with links ending with a dot.

Password protect ,7z files are incorrectly blocked.

After FortiMail/FortiSandbox processes the email, the email is moved to the user's inbox, instead of the original custom folder.

In some case, fail to allow PDF files.

Double stamping removal only works on full domains, not on subdomains.

Invalid top-level domain addresses are rejected in relaxed email parsing mode.

Regular expressions are not detected in XLS files.

For some email, FortiMail may get NoResult response from FortiSandbox.

Fail to detect files with .js extension included in BZIP2 archives.

Fail to allow Excel files when sent in .rar archives.

DLP attachment metadata detection doesn't work for docx and xlsx files.

Reach FortiSandbox submission limit incorrectly.

Cloning a used mail routing profile, when the max entries are reached, deletes the original profile.

DKIM and S/MIME signing in combination does not work properly.

Some GUI items are not translated into Spanish and Portuguese.

Oversized email meta data is sent to FortiSandbox.

The maifilterd process causes high CPU usage.

After adding a new webmail custom language under System > Customization > Appearance, the IBE registration web portal stops working.

When hide-on-email-arrival is enabled with Microsoft 365 real-time scanning, duplicate folders may be created in the mail user inbox.

IBE push email enhancement.

After upgrading from 6.0.7 to 6.2.4 release, the quarantine release URL in the quarantine report is incorrect on the HA config secondary unit.

For Diffie-Hellman key exchange, FortiMail uses self-generated parameters, which are different from the predefined finite field groups in RFC 7919.

Gmail using a "+" plus symbol for an alias causes issues with IBE account creation.

Unexpected quotation marks appear in the block lists when exporting the configuration.

LDAP authentication does not work for newly created domains.

Oversized meta data is sent to FortiSandbox.

The mailfilterd process causes high CPU usage.

After upgrading from 6.4.3 to 6.4.4 release, the customized IBE language is lost.

RADIUS 2FA users are locked out after the first unsuccessful login attempt.

IBE customized template for 2FA secure token notification is not taking the changes on the "From" field.

In FIPS-CC mode, importing a certificate via the GUI fails with the message "Unable to get certificate CRL."

Fail to connect to the SMB/CIFS server under Data Loss Prevention > Sensitive Data > FingerPrint Source.

Same email group entries can be created due to case sensitivity.

Mail authentication failed due to special characters in passwords.

Possible to create identical greylist exempt entries.

Incorrect email subject encoding modifies the cross search log lines.

CWE-310: Cryptographic Issues.

CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow').

CWE-36: Absolute Path Traversal.

CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection').

CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection').

CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal').

CWE-131: Incorrect Calculation of Buffer Size.