Loss of connection with no internet access and multiple crashes for the application WAD.

Proxy forwarding no longer works after firmware upgrade.

Sync issue due to casb.saas-application matching error.

No alert email for license-related logs when alertmail setting.fpx-license-logs is enabled.

WAD crash at wad_http_avscan_scan_cache_find.

ICAP profile should not be counted towards SWG license seats.

Internet service and customer service groups do not work in proxy policies.

IP threat feed configured in global VDOM does not work when used as a destination address in a policy in a VDOM and the destination address is treated as having no addresses.

FortiManager access is lost after upgrade when central-management type is fortimanager.

Incorrect CLI version description in FortiProxy Hyper-V platforms.

After upgrading, some websites are inaccessible when web cache is enabled.

Traffic redirected through proxyd is blocked when the FortiProxy is in bridge mode.

IPS default-action filter values do not match in GUI and CLI.

Session-based authentication with form-based method cannot be configured in GUI when web-auth-cookie is not enabled.

DNS filter profile search does not work for non-root VDOM.

User, group, and URL category information missing in HTTP transaction log for cert-inspect HTTPS traffic.

No log is generated when a user is redirected to SAML authentication.

"exec ha manage" returns the "Bad vrf ' 32'" error.

Cannot configure heartbeat interface IP or set up unicast HA in transparent mode.

Potential crash in wsm_read_string().

FortiProxy sends a request to FortiGuard every 30 minutes and causes out-of-sync for a few minutes.

Integer overflow issues.

FortiAnalyzer traffic is directed to the dedicated-to management interface even if the dedicated-to interface is down.

Duplicate file-filter logs.

Passive FTP over SOCKS proxy does not send RETR command.

Crash when sending HTTPS request with unexpected path to Captive-portal-ssl port.

Overlapping buffer in memory copy may cause undefined behavior.

GUI issues.

Transparent policy does not support interface-subnet firewall address type.

Memory leak for multipart boundary in http/2.

Disable ssh-rsa from SSH server host-key algorithm.

The "munmap" function is called with an incorrect argument, which can result in buffer overflow.

FortiProxy cannot detect the VFIO network inteface type in OCI.

FortiProxy crashes after cache peer setting change.

High CPU and WAD crashes on FPX-4000E.

Cannot change log disk size after Azure template deployment.

FortiProxy does not use the correct certificate configured for secure-proxy when multiple web-proxy entries exist.

Some pages such as policy, address, dashboard cannot be loaded for FortiProxy secondary units after upgrading from 7.4.3 to 7.4.4.

Error when creating HA with ha-mgmt interface.

Memory leak when using SAML authentication.

FortiProxy does not attempt to authenticate using the secondary Radius server when the primary is down.

The GUI option for selecting a wildcard FQDN destination for IPv6 SNAT does not work properly.

SDN dynamic address does not work.

Explicit FTPS does not work over SOCKS proxy.

File Filter Profile is unavailable on the WebUI when policy type is FTP.

Device freezes and randomly reboots. Kernel panic observed.

Intermittent file uploading failure using SFTP on Winscp client after upgrade.

Transparent policy schedule one-time match does not match system time.

Inline CASB DB version rolls back to built-in version upon FortiProxy reboot or upgrade.

DHCP relay does not work in FortiProxy.

NTLM Agentless authentication does not work when LDAP cache is enabled.

Internet is not accessible through Android Emulator.

Increase the maximum http2 header value length from 16 KB to 32KB to accommodate websites with a bigger header value.

Traffic logs do not show transparent policy UUID and the Packets column always shows 0.

Optimize Inline CASB matching logic.

High CPU load through ips-engine and WAD keeps crashing when the isolator profile has an empty entry.

WAD fails to forward HTTP request with header 'accept-encoding: zstd' when strip-encoding is enabled.

No status information for hardware sensor.

Cache resolving issue in HA.

Inline IPS deep control crashes.

Webcache cannot correctly handle content-encoding conversion for Brotli and zstd.

FTP connection fails through wanopt profile with FTP.

VDOM still works after being disabled on GUI.

WAD crash due to accessing uninitialized wad_fwd_srv list when process algo is closing.

Access issue after changing captive portal type.

Crash when getting eicar file with webfilter in transparent policy.

Unpacked variables do not match the pack layout.

WAD daemon for wad-config-notify has memory leak.

WAD removes whole path and not forward request to server when you set to delete specific url path with CASB customized UA.

Uninitialized user group member.

SSH deep-inspection with unsupported-version is bypassed.

FortiProxy authentication rule misses some authentication schemes.

Website encounters slowness and stuck issue due to http2.

Scanunit internal error due to http data failing zlib data check during content decode.

IPSet allows duplicate internet service entries in a single IP set.

Unable to configure ha-mgmt-intf ip for FortiProxy in transparent mode.

IPS sensor configuration does not filter out what is not supported.

Error saying "Failed to enforce FortiOS Security Enforce mode" at FPX-400G startup.

VIP configured in a transparent policy affects the behavior of FTP proxy.

Unexpected logged kernel warnings.

WAD crashes frequently with "signal 11 (Segmentation fault) received" and "signal 6 (Aborted) received".

Some categories are missing under System > Replacement Messages in GUI.

WAD crash log at wad_ips_hs.c.

Refactor and improve WAD vd module management.

Explicit proxy traffic is blocked by shaping policy and traffic log shows "Shaping policy internal error".

Traffic loop caused by HA in transparent mode.

Crash at wad_sstr_upd at /code/daemon/wad/wad_str.h:96.

GIF, TIFF, and PNG files can be uploaded as replacement images but do now show up in replacement message.

Buffer security violation in wad_str2ip.

Traffic cannot be forward to isolator after changing the name of the isolator in FortiProxy.

The "last modified" time for FortiNBI installer packages are not updated during upload.