URL click protection is triggered even if the URL doesn't match the URL rewrite category.

URL is not rewritten although the log shows otherwise.

In some case, legitimate JPG files are blocked by the content filter.

In some cases, URLs are incorrectly removed.

Fails to parse Base64 escaped UTF-8 strings.

In some cases, domain block list entry for *@* is added automatically.

In some case, SPF check does not work properly.

In some cases, the SPF records cannot be resolved properly.

Email classified as a "Sender Alignment" is not archived in the "Bulk" but in the "Inbox".

Click protection with FortiIsolator occurred when its URL rating category was configured, even though CDR was not enabled in the content profile.

Fail to submit the email to FortiSandbox when the attachment ends with "." (such as "test.htm.").

Large dictionary with wildcards may cause high CPU usage and email rejection.

When setting "None" action as replacement message profile in the content profile action, the default replacement message notification is delivered.

No DKIM signing for S/MIME outbound mail.

QR codes are not detected in the email body and the attachment .jpg or .png files.

In some cases, URL removal may render the email unreadable in the system quarantine.

Email may reach one recipient but not another due to incorrect DMARC checking.

DLP rule won't be triggered for Arabic PDF 1.4 files.

In some cases, fails to resolve SPF records.

Message ID is the same for email that is sent to original host and released from system quarantine.

Extended DSN does not work.

In some cases, not all sender rate control notifications are sent.

Some sender rate control notification email contents are blank.

IBE reactivation notification uses wrong Mail From address.

Fails to respond to IPv6 requests in some cases.

Fortimail VM license won't validate after upgrading to Proxmox 8.1.4.

MTA-STS policies cannot be matched properly.

Incorrect replacement message information for email sent in HTML or Rich Text Format.

In HA mode, the personal quarantine folder is automatically removed after some time on the secondary unit.

4096-bit DKIM key import is not supported.

LDAP synchronization for address book in server mode does not work properly.

Duplicate email after restoring the mailbox.

SAML attribute to identify email address does not work.

After upgrading to v7.4.1, users cannot log in to FortiMail using RADIUS authentication.

In some cases, the quarantined email cannot be released from the History view.

Maximum value of IP address groups was lowered incorrectly for MSSP licenses.

Virtual IP stopped working in HA cluster after upgrading from v7.2.5 to v7.4.1.

In some cases, FortiMail-900F CPU usage may increase intermittently.

No search result for quarantined messages.

In a recipient policy, changes to "Email address group" recipient pattern are not saved.

Abnormal high CPU usage when certain files are received.

FortiMail interface MAC addresses are inconsistent with ESXi VM NICs MAC addresses after adding the 5th interface to the VM.

"dsn-ehlo-other-name" does not display in mail header.

Upgrading to 7.2.6 causes issue with interface link status.

After upgrade from v7.2.5 to v7.4.2, IP pools become unavailable.

If an administrator accidentally disables the last admin account, there is no way to log in to FortiMail anymore.

IPv6 virtual IP does not work properly on HA fail-over.

SHA256 is not supported for S/MIME signing.

RADIUS authenticated accounts cannot see "Archive to account" action in all action profiles.

TLS minimum version enforcement log is incomplete.

Mail statistics report doesn't work as expected when there are multiple-level protected domains.

No system event log, SNMP trap, or alert email for "Read-only file system" issue.

CDR logging enhancement.

In some cases, the miglogd daemon may get stuck and cause failure to send logs to FortiAnalyzer Cloud.

Mail Filtering Statistics "both directions" report does not add up the incoming and outgoing statistics reports.

When filling the name in the "To" filed that contain Cyrillic, the results are not displayed correctly.

Scroll bar does not show when trying to switch users in webmail.

Webmail unable to load when SSO is used and the webmail page is closed and then re-opened.

Mail Statistics does not include email messages from associated domains.

In some cases, adding comments with spaces may cause the system to reboot.

Error "Entry is not found" occurs when copying the content profile.

Bayesian training page does not update properly.

Admin GUI does not show inbox subfolders created by email user.

If the recipient display name contains an apostrophe, the email is not sent to this recipient.

Newly created DKIM key does not show up on the GUI promptly.

Cannot handle Cyrillic symbols properly in the To fields in webmail.

Webmail SSO users will not be logged out after idle time.

VLAN Interfaces are not displayed on HA configuration GUI.

CVE-2024-6387: regreSSHion: RCE in OpenSSH's server, on glibc-based Linux systems