Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • Release Notes

    Home FortiProxy 7.0.19 Release Notes
    7.0.19
    7.6.0
    7.4.6
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.12
    7.2.11
    7.2.10
    7.2.9
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.19
    7.0.18
    7.0.17
    7.0.16
    7.0.15
    7.0.14
    7.0.13
    7.0.12
    7.0.11
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    2.0.14
    2.0.13
    2.0.12
    2.0.11
    2.0.10
    2.0.9
    2.0.8
    2.0.7
    2.0.6
    2.0.5
    2.0.4
    2.0.3
    2.0.2
    2.0.1
    2.0.0
    1.2.13
    1.2.12
    1.2.11
    1.2.10
    1.2.9
    1.2.8
    1.2.7
    1.2.6
    1.2.5
    1.2.4
    1.2.3
    1.2.2
    1.2.1
    1.2.0
    1.1.6
    1.1.5
    1.1.4
    1.1.3
    1.1.2
    1.1.1
    1.1.0
    1.0.7
    1.0.6
    1.0.5
    1.0.4
    1.0.3
    1.0.2
    1.0.1
    1.0.0

    Resolved issues

    Resolved issues

    The following issues have been fixed in FortiProxy 7.0.19. For inquiries about a particular bug, please contact Customer Service & Support.

    Bug ID

    Description

    859937, 975685

    Possible wad memory leak.

    996624

    Explicit FTP fails to set up data channel in active mode on transparent mode.

    1002558

    Fix Invalid fields on policy page.

    1003729

    Unable to configure ha-mgmt-intf ip for FortiProxy in transparent mode.

    1003898

    ICAP client issue on receiving 204 response.

    1015722, 1054835, 1064758

    When tcp-window-type is set to auto-tuning, throughput for single file download speed falls below expectation.

    1020657

    Failure to establish an FTPS data channel in TP mode .

    1026020

    _wad_tcp_port_rebuild may leak wad_session_context object.

    1035614

    Unpacked variables do not match the pack layout.

    1036823, 1083982

    Fix some GUI issues.

    1039006

    Increase the maximum http2 header value length from 16 KB to 32KB to accommodate websites with a bigger header value.

    1045084

    Potential overrun in bmclib.c.

    1047542

    WAD fails to forward HTTP request with header 'accept-encoding: zstd' when strip-encoding is enabled.

    1047758

    Website encounters slowness and stuck issue due to http2.

    1049243

    Access issue after changing captive portal type.

    1049784

    Cannot deploy FortiProxy on ESXi 8.0 using the OVF file.

    1050315

    Cannot change proxy-address type in CLI when the type is referenced.

    1058198, 1060782

    Traffic loop caused by HA in TP mode.

    1059374

    Traffic cannot be forward to isolator after changing the name of the isolator in FortiProxy.

    1059663

    Access issue with dedicated-to management interface in HA mode in transparent mode.

    1060351

    Cannot visit Gmail and other websites after enabling Strict-Web-Check.

    1060903, 1060905, 1084028

    CSF path traversal vulnerabilities

    1066013

    Aggregate interface and all related interfaces flap when any of the aggregate interface configuration is changed.

    1066209

    SNMP MIB file check failure for FPX-4000G.

    1070236

    WAN Opt ports 7810 and 7802 are always exposed even when no wanopt profile is enabled.

    1076622

    WAD and DLP block large .exe files, but do not issue an HTTP 403.

    1078472

    HA works only under NAT mode, not under transparent mode.

    1081878

    WAD crash in wad_ssl_unsupport_block_check.

    Common vulnerabilities and exposures

    FortiProxy 7.0.19 is no longer vulnerable to the following CVE reference. Visit https://fortiguard.com/psirt for more information.

    Bug ID

    CVE reference

    985048

    CVE-2024-26015

    868634

    CVE-2023-28002

    Previous
    Next

    Resolved issues

    Resolved issues

    The following issues have been fixed in FortiProxy 7.0.19. For inquiries about a particular bug, please contact Customer Service & Support.

    Bug ID

    Description

    859937, 975685

    Possible wad memory leak.

    996624

    Explicit FTP fails to set up data channel in active mode on transparent mode.

    1002558

    Fix Invalid fields on policy page.

    1003729

    Unable to configure ha-mgmt-intf ip for FortiProxy in transparent mode.

    1003898

    ICAP client issue on receiving 204 response.

    1015722, 1054835, 1064758

    When tcp-window-type is set to auto-tuning, throughput for single file download speed falls below expectation.

    1020657

    Failure to establish an FTPS data channel in TP mode .

    1026020

    _wad_tcp_port_rebuild may leak wad_session_context object.

    1035614

    Unpacked variables do not match the pack layout.

    1036823, 1083982

    Fix some GUI issues.

    1039006

    Increase the maximum http2 header value length from 16 KB to 32KB to accommodate websites with a bigger header value.

    1045084

    Potential overrun in bmclib.c.

    1047542

    WAD fails to forward HTTP request with header 'accept-encoding: zstd' when strip-encoding is enabled.

    1047758

    Website encounters slowness and stuck issue due to http2.

    1049243

    Access issue after changing captive portal type.

    1049784

    Cannot deploy FortiProxy on ESXi 8.0 using the OVF file.

    1050315

    Cannot change proxy-address type in CLI when the type is referenced.

    1058198, 1060782

    Traffic loop caused by HA in TP mode.

    1059374

    Traffic cannot be forward to isolator after changing the name of the isolator in FortiProxy.

    1059663

    Access issue with dedicated-to management interface in HA mode in transparent mode.

    1060351

    Cannot visit Gmail and other websites after enabling Strict-Web-Check.

    1060903, 1060905, 1084028

    CSF path traversal vulnerabilities

    1066013

    Aggregate interface and all related interfaces flap when any of the aggregate interface configuration is changed.

    1066209

    SNMP MIB file check failure for FPX-4000G.

    1070236

    WAN Opt ports 7810 and 7802 are always exposed even when no wanopt profile is enabled.

    1076622

    WAD and DLP block large .exe files, but do not issue an HTTP 403.

    1078472

    HA works only under NAT mode, not under transparent mode.

    1081878

    WAD crash in wad_ssl_unsupport_block_check.

    Common vulnerabilities and exposures

    FortiProxy 7.0.19 is no longer vulnerable to the following CVE reference. Visit https://fortiguard.com/psirt for more information.

    Bug ID

    CVE reference

    985048

    CVE-2024-26015

    868634

    CVE-2023-28002

    Previous
    Next