Verify confirmation-id to numeric characters only for Windows license confirmation over phone activation.

Implement Central Management support for FortiDeceptor.

Fabric Pairing - Add FortiDeceptor as fabric device on FortiGate.

Prepare and publish new deception OS for medical.

Prepare and publish new deception OS for POS device.

Prepare and publish new deception OS for ERP device.

HTTP service support on Linux.

Support GIT service on Linux decoy.

Support IIS server on customized Windows Server 2016/2019.

Support different sets of decoy services for SCADA for different purposes.

Windows deception lure redesign (SMB).

Cache credential lures.

Support ARP lure in lure installation on endpoint.

Lure token package installer should delete itself after the installation is finished.

Display token information in the deception map as previously.

Verify FDS server with CA2 certificate and download packages over HTTPS protocol.

MAC address modification in deploy wizard GUI.

For the new security compliance, use the domain in the URL to access new VM image server.

Add subnet support in Safe List.

VNC icon should be disabled for built-in decoy images.

Add a new Type level to incident alert.

Out-of-bounds array indexing in system-install.

Race condition vulnerability in command shell.

Uncontrolled resource consumption (unauthenticated denial of service) in login module.

Increase the default HDD size for FortiDeceptor VM model from 200GB to 500GB.

Disable or set as readonly the deception menu on client appliances.

Email does not work on the relay server that is restricted to verifying the host name in EHLO command.

Decoy deploy stuck in starting status when decoy number reaches the limit and all the decoys try to launch.

Decoy template can be saved many times.

Improve performance of CLI data-purge command.

Lure generator does not use the given user names.

Lure generator does not use the user imported resource file.

Default admin user cannot update the trusted host configuration.

Verify confirmation-id to numeric characters only.

dcimg-status should show uninitialized deception OS.

System time change affects Windows variety decoy keepalive functionality.

Static mode all IP addresses of gateway and IP range should be in the same subnet of selected monitor VLAN or subnet.

Provide download button for the imported LDAP users.

Verify that custom ports do not conflict with each other.

Deception OS page shows empty list on bootup even after proper network configuration.

When overwrite is not enabled, allow overwrite server address to be empty.

CM Manager should show CM related info in secure Fabric widget.

When deception OS does not have a license, the deployed decoy cannot be deleted.

Command injection vulnerability caused by call function in subprocess.

Software version tracking.

Vulnerability for FortiDeceptor GUI.

Import lure user from LDAP page needs to provide CA certificate dropdown list, not text field.

Force refresh whole page or logout session when switching mode.

Analysis-Export to PDF download failed / content overflow.

Remote admin user auth test mixed with local trusthost verification.

The hostname generated by automated lure process should be valid.

RDP and SMB detection issues with Cus Win join AD.