Genian ZTNA 6.0.18 Release Notes (2023-12-19)
Last Updated: 2024-02-01
Security Vulnerability
| Revision | Key | Components | Description | Affects Versions | CVSS Score |
|---|---|---|---|---|---|
| 123781 | GN-26393 | WebUI | Vulnerability where information can be modified by directly entering a URL to an unauthorised page | 3.1 | |
| 123284 | GN-26390 | WebUI | File export permission bypass vulnerability for unauthorized administrators through the Audit Log REST API | 3.1 |
New Features and Improvements
| Revision | Key | Components | Description | Affects Versions |
|---|---|---|---|---|
| 123464 | GN-27625 | Sensor | Fixed an issue where pubilc IP cannot be imported when changing sensor operation modes and policies | |
| 122922 | GN-25063 | WebUI | 6.0 widget added | |
| 122821 | GN-27491 | WebUI | Improved so that IDP-enabled SSO authentication requests can be authenticated when linking SAML authentication | |
| 122708 | GN-27476 | WebUI | Added a divider line to separate SAML login from existing login buttons, and improved login button output when setting multiple IdPs | |
| 122708 | GN-27344 | Center | Improved functionality so that secondary webhook authentication can be linked | |
| 122708 | GN-27320 | WebUI | Improvements to the alarm output when external access is permitted | |
| 122708 | GN-27249 | Linux Agent | Linux Agent modified to display an error message sent from the server when the ZTNA Client connection fails | |
| 122708 | GN-27243 | Authsync | Improved REST API Server-type information synchronization so that paging parameters included in response headers can be used | |
| 122708 | GN-27201 | WebUI | Added an IP/MAC additional field item to change node properties | |
| 122708 | GN-27140 | Sensor | Improved to sign with ZTNA Gateway server certificate center CA | |
| 122708 | GN-27100 | Center | ZTNA client fixed IP allocation failure message delivered to client | |
| 122708 | GN-27090 | Center | An issue where an audit record is not left when ZTNA fixed IP allocation fails | |
| 122708 | GN-27077 | Sensor | Improved exception handling for event socket unconfigured logs when creating an event socket | |
| 122708 | GN-27068 | WebUI | Improved to be able to browse the nodegroup criteria filter list | |
| 122708 | GN-27052 | WebUI | Improved so that an additional path path can be entered when entering Domain on the application definition screen | |
| 122708 | GN-26955 | -Unknown/None- | Improved the sysinspect script to work with the changed ES account when the ES account is changed | |
| 122708 | GN-26942 | WebUI | Fixed an issue where an error log was left when calling the device modification API | |
| 122708 | GN-26929 | Database | Add device information to add/delete 'USB information' audit log | |
| 122708 | GN-26921 | Windows Agent | Development of plug-ins linked to external authentication through agents | |
| 122708 | GN-26913 | Windows Agent | Exosphere vaccine information collection | |
| 122708 | GN-26909 | Zero Trust Security | [ZTNA] Add RADIUS accounting attribute generated when connecting to a client | |
| 122708 | GN-26907 | Center | Improved so that multiple URLs can be set when setting a search filter webhook | |
| 122708 | GN-26889 | Sensor | A problem where traffic information is not output when using ZTNA GW (Global-line) | |
| 122708 | GN-26873 | WebUI | Improved the quick search in the top menu to search for (IP/equipment) owners and ownership departments | |
| 122708 | GN-26860 | WebUI | Function to view process status information in the cloud collector | |
| 122708 | GN-26855 | MySQL | [General-purpose OS] Improved to prevent reuse of MySQL passwords | |
| 122708 | GN-26842 | Center | mysqldump execution error when updating CLOUD GPDB | |
| 122708 | GN-26575 | IPMGMT | Disable access when the ipmgmt page function is not used | |
| 122708 | GN-26545 | GenianOS | GNOS kernel version upgrade (5.15.0) | |
| 122708 | GN-26482 | Authsync, Database | When storing department codes, compress them with a hash function to prevent oversize | 5.0.45, 6.0.2 |
| 122708 | GN-26325 | GNOS | Fixed an issue where procmond was executed repeatedly when running httpd-driven scripts | |
| 122708 | GN-26284 | Center | In-product self-signed certificate automatic renewal function | |
| 122708 | GN-26021 | Sensor | Apply URL+pathpattern and userAgent rules when detecting an application using APP DB | |
| 122708 | GN-25674 | WebUI | Errors outside the password rules guide phrase area when changing the ZTNA password | |
| 122708 | GN-25533 | Center | Added a cache deletion option when setting up the proxy service | |
| 104536 | GN-22567 | Database | GNOS MySQL 8.0 upgrade |
Issues Fixed
| Revision | Key | Components | Description | Affects Versions |
|---|---|---|---|---|
| 123883 | GN-27681 | WebUI | System > System Management > Image Selection Upgrade Popup Window Error | 6.0.18 |
| 123767 | GN-27674 | MySQL | An issue where the daemon does not run after upgrading to the MySQL 8.0 version image on a device with an SSD | 6.0.18, 5.0.58 |
| 123721 | GN-27652 | Center | A problem where Google OTP authentication cannot be performed because the Google OTP security key issued by the center cannot be sent to the agent | 6.0.13 |
| 123497 | GN-27646 | Authsync | If a MySQL function is used in the user department ID column name of information synchronization, an incorrect policy may be assigned due to a failure in department synchronization | 6.0.18, 5.0.58 |
| 123435 | GN-27641 | WebUI | In the tomcat log, by the following code has not been detected to the pool, no symptoms of connecting to the web console after a large number of cases | 5.0.20 |
| 123340 | GN-27399 | macOS Agent | A problem where plug-ins don't work according to macOS internal/external conditions | 6.0.5, 5.0.48 |
| 123298 | GN-27573 | WebUI | A problem where the list is not displayed when clicking on the number of members in each group in the user group status | 4.0.156, 6.0.16, 5.0.57 |
| 123293 | GN-27401 | Sensor | A problem where the sensor process terminates abnormally when the same event is received from the sensor device | 4.0.64 |
| 123291 | GN-27541 | Authsync | A problem where if the connection to the information synchronization server fails, it is treated as a deleted user and all users are deleted | 6.0.9 |
| 123281 | GN-27517 | WebUI | Errors where certain items are not modified in the Nodes REST API | 5.0.8, 4.0.111 |
| 123274 | GN-27550 | WebUI | A problem where tree-structured data components are not output | 6.0.16, 5.0.55 (LTS), 6.0.17, 5.0.57 |
| 123268 | GN-27460 | GenianOS | [General-purpose OS] An issue where aes256 commands are not executed during initial operation | 5.0.42, 6.0.16, 5.0.55 (LTS), 5.0.56 |
| 123266 | GN-26993 | WebUI | Information display error displayed as a tooltip on ip and mac on the audit log and node detailed history management screen | 6.0.4, 5.0.47 |
| 123166 | GN-27519 | Sensor | Symptoms where the sensor system stops due to a deadlock when changing the sensor mode continuously | 5.0.57, 4.0.157, 6.0.19 |
| 123133 | GN-27496 | Linux Agent | Linux Agent intermittently misses sending some action system information | 5.0.50, 6.0.15 |
| 123055 | GN-24708 | Center | In an environment where many sensor debugs are sent to the center, a load may be caused by deleting old debugs when the center is rebooted | 5.0.0 |
| 123046 | GN-27575 | Center | An issue where the log filter action does not work when the ES log filter query result is greater than 2K | 4.1.M6 |
| 122946 | GN-27574 | Center | An issue where ES index (nac-filter) for log filters is deleted during the ES log cleaning cycle | 5.0.50, 6.0.11 |
| 122840 | GN-27561 | Center | [General-purpose OS] An issue where the LDAPsearch command results fail due to the LDAP configuration file being set to the wrong file in the general-purpose OS | 5.0.42 |
| 122708 | GN-27500 | Windows Agent | "Outsider Extension (Registry)"Problems that cannot be decertified when applying the action for the first time | 4.0.0, 5.0.0, 6.0.0 |
| 122708 | GN-27438 | WebUI | An issue where existing tags are removed when adding tags in node details | 6.0.18 |
| 122708 | GN-27424 | WebUI | An issue where the dashboard tag cloud type widget continues to load | 6.0.14 |
| 122708 | GN-27419 | WebUI | An issue where the data area is not output when searching with invalid conditions in the Flow log | 6.0.0 |
| 122708 | GN-27397 | WebUI | Error creating and modifying RADIUS policies with the operator account | 5.0.30 |
| 122708 | GN-27389 | Center, CLOUD | An issue where generic OS sensor upgrades are not performed automatically when upgrading the CLOUD policy server | |
| 122708 | GN-27368 | WebUI | The problem of incorrect aggregation when generating daily reports for each administrator based on the scope of management | 6.0.17, 5.0.57 |
| 122708 | GN-27356 | Sensor | A problem where the cache service does not run even when the patch proxy service is set to ON | 5.0.55 (LTS), 4.0.157 |
| 122708 | GN-27321 | WebUI | Node/control policy issues not being fixed | 4.0.157, 6.0.18, 5.0.58 |
| 122708 | GN-27293 | WebUI | An issue where error messages appear in irrelevant locations in the nodegroup filter settings popup | 6.0.14 |
| 122708 | GN-27268 | Sensor | A problem where RADIUS authentication requests are sent to the default gateway even if an interface to communicate with the policy server is specified | 6.0.14 |
| 122708 | GN-27148 | WebUI | An issue where the login failure count is not reset after a successful login when logging in to the management console using secondary authentication | 4.0.10 |
| 122708 | GN-27119 | Windows Agent | A problem where all the name value defined in the URL button in the agent authentication window is not output | 5.0.42, 6.0.0 |
| 122708 | GN-27111 | Authsync | A problem where rank synchronization fails when there is no rank information in the local DB during rank synchronization | 6.0.6, 5.0.49 |
| 122708 | GN-27110 | WebUI | The problem of not being able to authenticate when accessing the application results screen again after modifying the user information on the CWP user registration application result search screen | 5.0.32 |
| 122708 | GN-27059 | WebUI | A problem where tag names can be entered with a space (Space) | 4.0.M7 |
| 122708 | GN-27057 | procmond | An issue where when Tomcat is restarted, the audit log says tomcat9 even though it's not the tomcat9 version | 5.0.53, 6.0.15 |
| 122708 | GN-27048 | WebUI | An issue where the vertical layer area overlaps when entering 3 or more lines on the login screen | 6.0.8 |
| 122708 | GN-27040 | Center | An issue where “unknown” and “no information” date information collected from agents is displayed as “1970-01-01” | |
| 122708 | GN-27017 | ElasticSearch, gnlogin | An issue where the audit log is not saved when the log server authentication information is changed before the log server is running | |
| 122708 | GN-27006 | WebUI | The service control menu was removed from the CLOUD version, but an issue where it can be accessed from the top menu | 5.0.29 |
| 122708 | GN-26992 | Center | An issue where the agent plug-in operates based on the policy server's time zone | |
| 122708 | GN-26953 | WebUI | An issue where data-linked values are incorrectly delivered when the fields are not sorted in the real-time mode of the audit log | 6.0.2 |
| 122708 | GN-26951 | Windows Agent | A problem where virus treatment audits are not recorded with the vaccine information collection plug-in | 4.0.144, 5.0.41 |
| 122708 | GN-26941 | WebUI | An issue where items in ConfEngine's addRemove component are modified incorrectly | 5.0.18 |
| 122708 | GN-26933 | WebUI | An issue where calendar components used in some date input fields are displayed only in English | 5.0.20, 6.0.0 |
| 122708 | GN-26904 | WebUI | Node Management > Problem with the icon not being displayed in the Risk column | 5.0.53, 6.0.13 |
| 122708 | GN-26864 | Windows Agent | An issue where the latest information in the information collection plug-in is not updated intermittently | 5.0.0, 6.0.0 |
| 122708 | GN-26859 | Linux Agent | Linux Agent, an issue where unpartitioned storage device information is not collected | 5.0.41, 6.0.0 |
| 122708 | GN-26777 | WebUI | An issue where the update time is not updated when modifying a node group in a node/control policy | 6.0.18 |
| 122708 | GN-26742 | Sensor | Using "NMAP TCP SCAN" in Sensor Node Information Check Settings Not Applicable | 5.0.40 |
| 122708 | GN-26415 | WebUI | An issue where policy updates fail when modifying security group policy conditions | 6.0.3 |
| 122708 | GN-26032 | WebUI | A problem where content is not visible as much as the bottom button area when vertical scrolling occurs in the dialog window | 6.0.1 |
| 122708 | GN-25805 | WebUI | IP Change Prohibited (Designated IP Band) in IP Matrix View - Single IP Violated icon is not displayed | 4.0.8 |