Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:


Table of Contents

Resolved issues

The following issues have been fixed in version 7.0.7. For inquiries about a particular bug or to report a bug, contact Customer Service & Support.

License

Bug ID

Description

821767 FortiClient Cloud license expiry error.

System Settings

Bug ID

Description

823701 FortiClient Cloud does not allow enabling Enforce User Verification.

Endpoint management

Bug ID

Description

772402 EMS does not move endpoint to correct workgroup based on installer ID after deploying FortiClient from EMS.
780630 EMS does not fully update Active Directory schema.
807741 All Groups view shows incorrect endpoint count.
813513 Administrator cannot download or view Sandbox malware report.
821704 EMS always reports device state as managed in verified and unverified user table even after FortiClient unregisters from EMS.

825673

EMS clears all entries after upgrade and does not allow traffic for some users.

827269 Policy is out of sync when moving endpoints using group assignment rules.

Endpoint policy and profile

Bug ID

Description

799062 FortiClient does not send Web Filter traffic logs to FortiAnalyzer.
810123 EMS VPN before logon does not appear with fresh FortiClient installation.
811199 FortiGate to EMS Web Filter profile synchronization misbehaves for Chromebook profiles.
816362 Web Filter profile synced from FortiManager does not allow enabling Allow websites when rating error occurs.
817291 EMS cannot import Web Filter options such as safe search and Allow websites when rating error occurs from FortiManager.
823595 For a newly created profile, <invalid_cert_action> should be set to warning by default when EMS applies a valid certificate.

Install and upgrade

Bug ID

Description

824303 EMS upgrade breaks Malware Protection profiles with XML error.

Fabric devices

Bug ID

Description

824210 EMS shows error when handling incoming FortiGate gateway information /api/v1/fgt/gateway_details/gateway_mac.

HA

Bug ID

Description

816314 Restoring database does not restore EMS configuration/settings in always on availability environment.

Deployment and installers

Bug ID

Description

814700 FIPS feature is gone after manual upgrade with FIPS-enabled installer that EMS created.

Zero Trust tagging

Bug ID

Description

821700 Dynamic firewall list on FortiGate does not list FortiClient endpoints.
823801 EMS does not dynamically remove CVE zero trust tag after FortiClient patches related vulnerabilities.
827300 Endpoint does not get correct zero trust network access tag.

Endpoint control

Bug ID

Description

825559 FortiClient fails to register with EMS when Enforce invitation-only registration for is enabled.

Performance

Bug ID

Description

812927 FCEMS_Das keeps restarting.

Vulnerability Scan

Bug ID

Description

740041 Vulnerability logging does not include filepath and applications.

Other

Bug ID

Description

814515 Int overflow on spInsertClientQuarantineFiles.

Common Vulnerabilities and Exposures

Bug ID

Description

792536

FortiClient EMS 7.0.7 is no longer vulnerable to the following CVE References:

  • CVE-2022-22720

  • CVE-2022-22719

  • CVE-2022-22721

  • CVE-2022-23943

Visit https://fortiguard.com/psirt for more information.

Resolved issues

The following issues have been fixed in version 7.0.7. For inquiries about a particular bug or to report a bug, contact Customer Service & Support.

License

Bug ID

Description

821767 FortiClient Cloud license expiry error.

System Settings

Bug ID

Description

823701 FortiClient Cloud does not allow enabling Enforce User Verification.

Endpoint management

Bug ID

Description

772402 EMS does not move endpoint to correct workgroup based on installer ID after deploying FortiClient from EMS.
780630 EMS does not fully update Active Directory schema.
807741 All Groups view shows incorrect endpoint count.
813513 Administrator cannot download or view Sandbox malware report.
821704 EMS always reports device state as managed in verified and unverified user table even after FortiClient unregisters from EMS.

825673

EMS clears all entries after upgrade and does not allow traffic for some users.

827269 Policy is out of sync when moving endpoints using group assignment rules.

Endpoint policy and profile

Bug ID

Description

799062 FortiClient does not send Web Filter traffic logs to FortiAnalyzer.
810123 EMS VPN before logon does not appear with fresh FortiClient installation.
811199 FortiGate to EMS Web Filter profile synchronization misbehaves for Chromebook profiles.
816362 Web Filter profile synced from FortiManager does not allow enabling Allow websites when rating error occurs.
817291 EMS cannot import Web Filter options such as safe search and Allow websites when rating error occurs from FortiManager.
823595 For a newly created profile, <invalid_cert_action> should be set to warning by default when EMS applies a valid certificate.

Install and upgrade

Bug ID

Description

824303 EMS upgrade breaks Malware Protection profiles with XML error.

Fabric devices

Bug ID

Description

824210 EMS shows error when handling incoming FortiGate gateway information /api/v1/fgt/gateway_details/gateway_mac.

HA

Bug ID

Description

816314 Restoring database does not restore EMS configuration/settings in always on availability environment.

Deployment and installers

Bug ID

Description

814700 FIPS feature is gone after manual upgrade with FIPS-enabled installer that EMS created.

Zero Trust tagging

Bug ID

Description

821700 Dynamic firewall list on FortiGate does not list FortiClient endpoints.
823801 EMS does not dynamically remove CVE zero trust tag after FortiClient patches related vulnerabilities.
827300 Endpoint does not get correct zero trust network access tag.

Endpoint control

Bug ID

Description

825559 FortiClient fails to register with EMS when Enforce invitation-only registration for is enabled.

Performance

Bug ID

Description

812927 FCEMS_Das keeps restarting.

Vulnerability Scan

Bug ID

Description

740041 Vulnerability logging does not include filepath and applications.

Other

Bug ID

Description

814515 Int overflow on spInsertClientQuarantineFiles.

Common Vulnerabilities and Exposures

Bug ID

Description

792536

FortiClient EMS 7.0.7 is no longer vulnerable to the following CVE References:

  • CVE-2022-22720

  • CVE-2022-22719

  • CVE-2022-22721

  • CVE-2022-23943

Visit https://fortiguard.com/psirt for more information.