Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
All Products
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Web Application Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • Web Application / API Protection
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions
    • All Products

    Release Notes

    Home FortiProxy 7.2.13 Release Notes
    7.2.13
    7.6.6
    7.6.5
    7.6.4
    7.6.3
    7.6.2
    7.6.1
    7.6.0
    7.4.13
    7.4.12
    7.4.11
    7.4.10
    7.4.9
    7.4.8
    7.4.7
    7.4.6
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.16
    7.2.15
    7.2.14
    7.2.13
    7.2.12
    7.2.11
    7.2.10
    7.2.9
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.23
    7.0.22
    7.0.21
    7.0.20
    7.0.19
    7.0.18
    7.0.17
    7.0.16
    7.0.15
    7.0.14
    7.0.13
    7.0.12
    7.0.11
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    2.0.14
    2.0.13
    2.0.12
    2.0.11
    2.0.10
    2.0.9
    2.0.8
    2.0.7
    2.0.6
    2.0.5
    2.0.4
    2.0.3
    2.0.2
    2.0.1
    2.0.0
    1.2.13
    1.2.12
    1.2.11
    1.2.10
    1.2.9
    1.2.8
    1.2.7
    1.2.6
    1.2.5
    1.2.4
    1.2.3
    1.2.2
    1.2.1
    1.2.0
    1.1.6
    1.1.5
    1.1.4
    1.1.3
    1.1.2
    1.1.1
    1.1.0
    1.0.7
    1.0.6
    1.0.5
    1.0.4
    1.0.3
    1.0.2
    1.0.1
    1.0.0

    Resolved issues

    Resolved issues

    The following issues have been fixed in FortiProxy 7.2.13. For inquiries about a particular bug, please contact Customer Service & Support.

    Bug ID

    Description

    1095945

    Cannot reset one of the scanunit debugs, which permanently floods the CLI with output.
    1093060 Format string vulnerability in certificate import.
    1043602, 1091669 Error when creating HA with ha-mgmt interface.
    1092960 Format string vulnerability in FortiToken import.
    1018780, 1023127 WAD crash on wad_http_avscan_comfort.
    1088776 Digest auth crash.
    1088412 No URL in the auth failed event log.
    1087203, 1088519 WAD blocks botnet after connection instead of before connection.
    1001079 Memory leak.
    1022667,1086628 FTP fails to transfer file when preview is enabled in ICAP profile.
    983997, 1099574 Failed to validate two different CAs with the same subject and issuer.
    1096728 Continuous WAD crashing on Azure which affects some VIP traffic.

    1101390

    Proxy-address host address config update does not take effect.

    1096290

    WAD crash at wad_log_http_transaction.

    1070388

    FortiProxy does not respond to an ICMP request from directly connected interfaces.

    1097384

    FortiProxy SOCKS policy-matching is case-sensitive while case-sensitivity is disabled globally.

    1083925

    When captive portal is set to FQDN, it fails to match due to FQDN case sensitivity.

    1082378

    The counter of bytes shows 0 after SOCKS traffic matched the policy.

    1093606

    Buffer overflow.

    Common vulnerabilities and exposures

    FortiProxy 7.2.13 is no longer vulnerable to the following CVE references. Visit https://fortiguard.com/psirt for more information.

    Bug ID

    CVE reference

    1108891

    CVE-2024-55591

    1092960, 1093060

    CVE-2024-45324

    Previous
    Next

    Resolved issues

    Resolved issues

    The following issues have been fixed in FortiProxy 7.2.13. For inquiries about a particular bug, please contact Customer Service & Support.

    Bug ID

    Description

    1095945

    Cannot reset one of the scanunit debugs, which permanently floods the CLI with output.
    1093060 Format string vulnerability in certificate import.
    1043602, 1091669 Error when creating HA with ha-mgmt interface.
    1092960 Format string vulnerability in FortiToken import.
    1018780, 1023127 WAD crash on wad_http_avscan_comfort.
    1088776 Digest auth crash.
    1088412 No URL in the auth failed event log.
    1087203, 1088519 WAD blocks botnet after connection instead of before connection.
    1001079 Memory leak.
    1022667,1086628 FTP fails to transfer file when preview is enabled in ICAP profile.
    983997, 1099574 Failed to validate two different CAs with the same subject and issuer.
    1096728 Continuous WAD crashing on Azure which affects some VIP traffic.

    1101390

    Proxy-address host address config update does not take effect.

    1096290

    WAD crash at wad_log_http_transaction.

    1070388

    FortiProxy does not respond to an ICMP request from directly connected interfaces.

    1097384

    FortiProxy SOCKS policy-matching is case-sensitive while case-sensitivity is disabled globally.

    1083925

    When captive portal is set to FQDN, it fails to match due to FQDN case sensitivity.

    1082378

    The counter of bytes shows 0 after SOCKS traffic matched the policy.

    1093606

    Buffer overflow.

    Common vulnerabilities and exposures

    FortiProxy 7.2.13 is no longer vulnerable to the following CVE references. Visit https://fortiguard.com/psirt for more information.

    Bug ID

    CVE reference

    1108891

    CVE-2024-55591

    1092960, 1093060

    CVE-2024-45324

    Previous
    Next