Webfilter cannot communicate with FortiGuard through proxy.

Removed the OPTIONS method from the HTTP 405 “Method Not Allowed” response.

ICAP error messages use the correct replacement messages rather than the existing, hard-coded 502 response.

Speed up policy learning by using a delta config.

WAD crash at wad_http_fwd_msg_body.

Select the next forward server by default for the least connection algorithm.

The inactivity timer is 30 minutes, and renewed any time it is given out by the pool for ICAP traffic, or when any traffic flows through the connection in either direction.

ICAP bypassing yields to web traffic corrupted upon ICAP_server failure to response.

Add support for ACI dynamic address in WAD.

Too many redirections error with session based authenthication and web-auth-cookie.

WAD crashed at wad_http_req_finished with signal 11.

WAD can crash when building a proxy policy if an address group has no member.

Corrupted forward-server caused WAD crash.

Fix GUI issues.

WAD crash due to long line reponse from server and SSH filter vulnerability.

Configuring SNMP wiped kernel SNAT settings.

Fix traffic shaping on newly configured VLAN interface.

Embed base64 string images instead of URLs for WAD blocking page.

Website will not reply if Connection uses the wrong letter case

ICAP infection headers could not show the correct file name.

The mac address type removed from firewall addresses, as it is not supported.

HTTP/HTTPS requests that match a policy with an L7 address are not forward to the isolate server.

DNS queries fail with dnsfilter applied.

Fix virtual MAC setup in HA mode.

cloudinitd crash when deploying FortiProxy on AWS.

Bypass interface kernel driver reset after rebooting.

FTP over TLS does not work through explicit proxy when ftp-over-http is enabled.

Fix HA sequential upgrade.

WAD crashes on attaching history traffic stats to NULL tcp_port from session.

Rare case in HA configuration caused kernel panic.

Fix SSLVPN connection issue.

FortiProxy does not have any cache hits after memory usage passes 60%.

Fix VPN widgets in the GUI.

ZTNA access stuck when going through TCP-fwd towards HTTPS with a deep-inspection profile.

Prefetch tasks added multiple times, leading to high resource usage .

Fix synchronizing captive-portal IP/FQDN in config-sync mode .

Image Analyzer (IA) profile not applied after being changed.

Failure to perform SNAT when creating an FTP PASSIVE mode data channel.

WAD can enter a dead loop when rebuilding explicit policy, and can timeout waiting for the DNS proxy daemon to reload a DNS profile.

SNMP not responding when dedicated-to management is enable on an interface.

XSS vulnerability on login check and SAML IdP route handler.

DNS can cause a dead loop in the WAD main schedule loop.

HLS vcache crash.

Fix issues with the function of administrator trusted host settings.

Access-Control-x headers not added to the owner tables and marked as invalid.

User information daemon memory use increases steadily if the LDAP server is unreachable.

Fix System Events is not accessible.

FortiProxy 7.0.7 is no longer vulnerable to the following CVE Reference:

• CVE-2022-40684