Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
All Products
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Web Application Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • Web Application / API Protection
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions
    • All Products

    Release Notes

    7.2.7
    7.6.4
    7.6.3
    7.6.2
    7.6.1
    7.6.0
    7.4.6
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.9
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.2.5

    Resolved Issues

    Resolved Issues

    The resolved issues listed below do not list every bug that has been corrected with this release. For inquires about a particular bug, please contact Fortinet Customer Service & Support.

    Antispam/Antivirus

    Bug ID

    Description

    1098766

    Messages with URLs redirecting to phishing sites cannot be caught.

    1060851

    DMARC check fails because the DKIM signature passes and fails for the same record.

    1034037

    QR codes are not detected in the email body and the attachment .JPG or .PNG files.

    1054713

    No DKIM signing for S/MIME outbound mail.

    1061270

    Content profile detects HTML attachment but fails to block it.

    1042417

    Legitimate email is quarantined due to the verdict of FortiGuard web filter.

    1031454

    DLP rule won't be triggered for Arabic PDF 1.4 files.

    System

    Bug ID

    Description

    1090327

    DMARC report will not be generated when RUA mailto domain doesn't match sender domain.

    1069702

    FortiMail broadcasts with destination port 8014.

    1100558

    In some cases, IBE password reset/reactivation URL does not work.

    1036933

    Email destined to multiple recipients may not reach some recipients due to DKIM issues.

    1057857

    Maximum value of IP address groups was lowered incorrectly for MSSP licenses.

    1062734

    In some case, some users may not add new entries to the block/safe lists.

    1034247

    High CPU usage when receiving some specific files.

    1033072

    Upgrading to 7.2.6 causes issue with interface link status.

    1062629

    RSA verify sign-failed error is returned by FortiMail when relaying an unencrypted email after upgrading to v7.2.5.

    1061797

    SMIME does not work properly with Cisco Mail Gateway.

    1049367

    In some cases, FortiMail-900F CPU usage may increase intermittently.

    1012948

    No search result for quarantined messages.

    1065609

    High CPU usage in some cases.

    Log and Report

    Bug ID

    Description

    1078550

    Quarantine report is garbled when special characters are used in email subject and "remove-active-content" is enabled.

    1022958

    CDR logging enhancement to avoid misunderstanding.

    Admin GUI/Webmail

    Bug ID

    Description

    1050096

    Admin GUI does not show inbox subfolders created by email user.

    1018416

    Bayesian training page does not update properly.

    1040096

    Newly created DKIM key does not show up on the GUI promptly.

    Common Vulnerabilities and Exposures

    FortiMail 7.2.7 is no longer vulnerable to the following CVE/CWE-References.

    Visit https://fortiguard.com/psirt for more information.

    Bug ID

    Description
    1033933

    CWE-613: Insufficient Session Expiration

    1057581

    CWE-201: Insertion of Sensitive Information Into Sent Data

    1051927

    CVE-2024-6387: regreSSHion: RCE in OpenSSH's server, on glibc-based Linux systems
    Previous
    Next

    Resolved Issues

    Resolved Issues

    The resolved issues listed below do not list every bug that has been corrected with this release. For inquires about a particular bug, please contact Fortinet Customer Service & Support.

    Antispam/Antivirus

    Bug ID

    Description

    1098766

    Messages with URLs redirecting to phishing sites cannot be caught.

    1060851

    DMARC check fails because the DKIM signature passes and fails for the same record.

    1034037

    QR codes are not detected in the email body and the attachment .JPG or .PNG files.

    1054713

    No DKIM signing for S/MIME outbound mail.

    1061270

    Content profile detects HTML attachment but fails to block it.

    1042417

    Legitimate email is quarantined due to the verdict of FortiGuard web filter.

    1031454

    DLP rule won't be triggered for Arabic PDF 1.4 files.

    System

    Bug ID

    Description

    1090327

    DMARC report will not be generated when RUA mailto domain doesn't match sender domain.

    1069702

    FortiMail broadcasts with destination port 8014.

    1100558

    In some cases, IBE password reset/reactivation URL does not work.

    1036933

    Email destined to multiple recipients may not reach some recipients due to DKIM issues.

    1057857

    Maximum value of IP address groups was lowered incorrectly for MSSP licenses.

    1062734

    In some case, some users may not add new entries to the block/safe lists.

    1034247

    High CPU usage when receiving some specific files.

    1033072

    Upgrading to 7.2.6 causes issue with interface link status.

    1062629

    RSA verify sign-failed error is returned by FortiMail when relaying an unencrypted email after upgrading to v7.2.5.

    1061797

    SMIME does not work properly with Cisco Mail Gateway.

    1049367

    In some cases, FortiMail-900F CPU usage may increase intermittently.

    1012948

    No search result for quarantined messages.

    1065609

    High CPU usage in some cases.

    Log and Report

    Bug ID

    Description

    1078550

    Quarantine report is garbled when special characters are used in email subject and "remove-active-content" is enabled.

    1022958

    CDR logging enhancement to avoid misunderstanding.

    Admin GUI/Webmail

    Bug ID

    Description

    1050096

    Admin GUI does not show inbox subfolders created by email user.

    1018416

    Bayesian training page does not update properly.

    1040096

    Newly created DKIM key does not show up on the GUI promptly.

    Common Vulnerabilities and Exposures

    FortiMail 7.2.7 is no longer vulnerable to the following CVE/CWE-References.

    Visit https://fortiguard.com/psirt for more information.

    Bug ID

    Description
    1033933

    CWE-613: Insufficient Session Expiration

    1057581

    CWE-201: Insertion of Sensitive Information Into Sent Data

    1051927

    CVE-2024-6387: regreSSHion: RCE in OpenSSH's server, on glibc-based Linux systems
    Previous
    Next