Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
All Products
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Web Application Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • Web Application / API Protection
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions
    • All Products

    Release Notes

    Home FortiProxy 7.0.18 Release Notes
    7.0.18
    7.6.6
    7.6.5
    7.6.4
    7.6.3
    7.6.2
    7.6.1
    7.6.0
    7.4.13
    7.4.12
    7.4.11
    7.4.10
    7.4.9
    7.4.8
    7.4.7
    7.4.6
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.16
    7.2.15
    7.2.14
    7.2.13
    7.2.12
    7.2.11
    7.2.10
    7.2.9
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.23
    7.0.22
    7.0.21
    7.0.20
    7.0.19
    7.0.18
    7.0.17
    7.0.16
    7.0.15
    7.0.14
    7.0.13
    7.0.12
    7.0.11
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    2.0.14
    2.0.13
    2.0.12
    2.0.11
    2.0.10
    2.0.9
    2.0.8
    2.0.7
    2.0.6
    2.0.5
    2.0.4
    2.0.3
    2.0.2
    2.0.1
    2.0.0
    1.2.13
    1.2.12
    1.2.11
    1.2.10
    1.2.9
    1.2.8
    1.2.7
    1.2.6
    1.2.5
    1.2.4
    1.2.3
    1.2.2
    1.2.1
    1.2.0
    1.1.6
    1.1.5
    1.1.4
    1.1.3
    1.1.2
    1.1.1
    1.1.0
    1.0.7
    1.0.6
    1.0.5
    1.0.4
    1.0.3
    1.0.2
    1.0.1
    1.0.0

    Resolved issues

    Resolved issues

    The following issues have been fixed in FortiProxy 7.0.18. For inquiries about a particular bug, please contact Customer Service & Support.

    Bug ID Description
    1026753 No alert email for license-related logs when alertmail setting.fpx-license-logs is enabled.
    1017054 Traffic redirected through proxyd is blocked when the FortiProxy is in bridge mode.
    1034036 FortiManager access is lost after upgrade when central-management type is fortimanager.
    1025657 After upgrading to 7.0.17, some websites are inaccessible when web cache is enabled.
    1027833 Proxy forwarding no longer works after firmware upgrade.
    1027699 FortiProxy fails with SSH message "kex type 34" when SSH server is not up-to-date.
    1020556 miglogd CPU usage is constantly high.
    1025697 newcli crash on "diag wad filter process-id-by-src" command.
    949464, 982553 WAD memory leak causing the FortiProxy to enter conserve mode randomly.
    1025600 Transparent policy allows other source IP addresses that are not defined as the source and ISDB destination.

    913703

    WAD processes are stuck in D state.
    1021196 SAML authorization does not use user-info when ldap-user-cache is enabled.
    1023713 TLS decode error when generating traffic with eicar.txt by SMTP.
    1014477 File uploads on webmail applications fail when antivirus, app control, or IPS is enabled on the explicit proxy policy.
    1041560 FortiProxy crashes after cache peer setting change.
    1046470 High CPU and WAD crashes on FPX-4000E.
    915834 HA active-passive flip: standby FortiProxy tries to reach out to FortiGuard services through HA port.

    1020961

    FortiProxy does not attempt to authenticate using the secondary Radius server when the primary is down.

    1023121

    Certificate tab keeps loading after you select the certificate.

    1040742

    The System > Settings page does not load properly in GUI.

    991626

    The GUI option for selecting a wildcard FQDN destination for IPv6 SNAT does not work properly.

    1025061

    Intermittent file uploading failure using SFTP on Winscp client after upgrading to 7.0.16.

    1003723

    Cannot configure heartbeat interface IP or set up unicast HA in transparent mode.

    1042226

    Potential crash in wsm_read_string().

    1038447

    FortiAnalyzer traffic is directed to the dedicated-to management interface even if the dedicated-to interface is down.

    962137

    HTTP CONNECT requests should not be redirected during cert-based authentication.

    1048791

    GUI issues.

    1046944

    No interface-subnet address type support for transparent policy.

    1047934

    ssh-rsa should be disabled under the SSH server_host_key_algorithm.

    1031971

    Memory utilization gradually increases with multipart boundary request.

    1045459

    Buffer overflow caused by the "munmap" function.

    1043778

    FortiProxy cannot detect the VFIO network inteface type in OCI.

    997868, 1041622

    Explicit FTPS does not work over SOCKS proxy.

    Common vulnerabilities and exposures

    FortiProxy 7.0.18 is no longer vulnerable to the following CVE reference. Visit https://fortiguard.com/psirt for more information.

    Bug ID

    CVE reference
    1059304

    CVE-2024-48886 and CVE-2024-50563
    Previous
    Next

    Resolved issues

    Resolved issues

    The following issues have been fixed in FortiProxy 7.0.18. For inquiries about a particular bug, please contact Customer Service & Support.

    Bug ID Description
    1026753 No alert email for license-related logs when alertmail setting.fpx-license-logs is enabled.
    1017054 Traffic redirected through proxyd is blocked when the FortiProxy is in bridge mode.
    1034036 FortiManager access is lost after upgrade when central-management type is fortimanager.
    1025657 After upgrading to 7.0.17, some websites are inaccessible when web cache is enabled.
    1027833 Proxy forwarding no longer works after firmware upgrade.
    1027699 FortiProxy fails with SSH message "kex type 34" when SSH server is not up-to-date.
    1020556 miglogd CPU usage is constantly high.
    1025697 newcli crash on "diag wad filter process-id-by-src" command.
    949464, 982553 WAD memory leak causing the FortiProxy to enter conserve mode randomly.
    1025600 Transparent policy allows other source IP addresses that are not defined as the source and ISDB destination.

    913703

    WAD processes are stuck in D state.
    1021196 SAML authorization does not use user-info when ldap-user-cache is enabled.
    1023713 TLS decode error when generating traffic with eicar.txt by SMTP.
    1014477 File uploads on webmail applications fail when antivirus, app control, or IPS is enabled on the explicit proxy policy.
    1041560 FortiProxy crashes after cache peer setting change.
    1046470 High CPU and WAD crashes on FPX-4000E.
    915834 HA active-passive flip: standby FortiProxy tries to reach out to FortiGuard services through HA port.

    1020961

    FortiProxy does not attempt to authenticate using the secondary Radius server when the primary is down.

    1023121

    Certificate tab keeps loading after you select the certificate.

    1040742

    The System > Settings page does not load properly in GUI.

    991626

    The GUI option for selecting a wildcard FQDN destination for IPv6 SNAT does not work properly.

    1025061

    Intermittent file uploading failure using SFTP on Winscp client after upgrading to 7.0.16.

    1003723

    Cannot configure heartbeat interface IP or set up unicast HA in transparent mode.

    1042226

    Potential crash in wsm_read_string().

    1038447

    FortiAnalyzer traffic is directed to the dedicated-to management interface even if the dedicated-to interface is down.

    962137

    HTTP CONNECT requests should not be redirected during cert-based authentication.

    1048791

    GUI issues.

    1046944

    No interface-subnet address type support for transparent policy.

    1047934

    ssh-rsa should be disabled under the SSH server_host_key_algorithm.

    1031971

    Memory utilization gradually increases with multipart boundary request.

    1045459

    Buffer overflow caused by the "munmap" function.

    1043778

    FortiProxy cannot detect the VFIO network inteface type in OCI.

    997868, 1041622

    Explicit FTPS does not work over SOCKS proxy.

    Common vulnerabilities and exposures

    FortiProxy 7.0.18 is no longer vulnerable to the following CVE reference. Visit https://fortiguard.com/psirt for more information.

    Bug ID

    CVE reference
    1059304

    CVE-2024-48886 and CVE-2024-50563
    Previous
    Next