Genian ZTNA 6.0.15 Release Notes (2023-05-17)
Last Updated: 2023-07-20
Security Vulnerability
Revision |
Key |
Components |
Description |
Affects Versions |
CVSS Score |
|---|---|---|---|---|---|
116655 |
Center |
Code improvements to Bufferoverflow |
2 |
||
115659 |
Linux Agent, macOS Agent, Windows Agent |
[Agent] Added validation for events sent from the Center and sensors |
6.3 |
||
114716 |
WebUI |
Vulnerability where an administrator's API key is exposed to other administrators |
5.3 |
||
114205 |
WebUI |
Vulnerability that allows unprivileged administrators to download debug logs |
2.9 |
||
113812 |
WebUI |
A problem where redirection can be performed by modulating the returnURL parameter used when moving pages in the management console |
1.9 |
New Features and Improvements
Revision |
Key |
Components |
Description |
Affects Versions |
|---|---|---|---|---|
117753 |
WebUI |
A function that outputs a warning when external access is permitted from the policy server |
||
117445 |
Linux Agent |
Linux Agent, development of distribution plug-ins based on Sigstore electronic signatures |
||
117369 |
Center, Linux Agent, macOS Agent, WebUI, Windows Agent |
Development of distribution plug-ins based on Sigstore electronic signatures |
||
116763 |
geniup |
A problem where a disk runs out when performing geniup on a UEFI system |
||
116385 |
Center, Sensor |
Display whether the sensor can be accessed externally in sensor information (public IP) |
||
116215 |
Center |
Electronic signature verification of update server distribution data via SLSA |
||
115882 |
Center |
Electronic signature verification for WSUSSCN2.CAB received from the update server |
||
115309 |
Center |
Improved so that RADIUS secondary authentication can be linked using ExtSVC |
||
114491 |
Docker |
Improved so that DKNS can run on Linux systems using nftables |
||
114376 |
Sensor |
Improved so that authentication and encryption algorithms can be selected when the SNMP Agent is running |
||
114251 |
WebUI |
Improved to include node group names when downloading node groups in Excel |
||
114195 |
WebUI |
Improved so that the node group conditions can be entered directly when setting the software name include/not included |
||
113890 |
Windows Agent |
Added a feature to force the use of Windows's 'Wi-Fi random hardware address option' |
||
113812 |
Enforcer |
DKNS Ubuntu 22.04 support |
||
113812 |
WebUI |
Improved so that customer information is not displayed on the management UI login screen |
||
113812 |
WebUI |
Improved the title of the node blocking rate status widget displayed in the control policy list |
||
113812 |
Windows Agent |
Added a feature that allows you to forcibly disable the Windows logon screen display settings when controlling the screen saver |
||
113812 |
WebUI |
A problem where the OS type combo box on the device group screen is output as an empty value |
||
113812 |
WebUI |
Improved info message style in the IP settings window that allows access |
||
113812 |
WebUI |
Dashboard widget added dialog UI/UX improvements |
||
113812 |
WebUI |
Improved so that ZTNA client information is displayed normally in a redundant environment |
||
113812 |
Center, DKNS |
Apply ztnaclient/urlfilter dynamic service port |
||
113812 |
WebUI |
SAML Service Provider Metadata Creation Function |
||
113812 |
Center |
Improved the part where the audit log type did not match due to event key mismatch |
5.0.33 |
|
113812 |
WebUI |
Fixed so that the end date of use of the IP application system is not displayed by default on the same day when applying for an IP |
||
113812 |
CWP |
Improved so that the administrator's ID is not displayed in CWP announcements |
||
113812 |
Center |
Improved so that when the agent logs on, node information can be updated immediately if it is determined that the device is different from the existing node |
||
113812 |
Sensor |
Improved so that ZTNA client session management works when policy servers are redundant |
||
113812 |
WebUI |
Improved the part where millisecond values are output in the DateTime value of emails sent after listening to the user |
||
113812 |
Center |
[General-purpose OS] Improved the flow log collection function to work (Filebeat added) |
||
113812 |
WebUI |
Improved so that a reason input pop-up window appears when approving/rejecting on the user application details page |
||
113812 |
Center, Database |
Adding node group conditions using system information (motherboard) collected by agents |
||
113812 |
Linux Agent |
Linux Agent adds password validation action function |
||
113812 |
GenianOS |
Change the CA certificate validity period to 10 years |
||
113812 |
Sensor |
Implementation of VXLAN connection function between ZTNA gateways (sensors) |
||
113812 |
WebUI |
Added an API function linked to external services |
||
113812 |
Center |
Added a function to enable OAUTH 2.0 ROPC authentication |
Issues Fixed
Revision |
Key |
Components |
Description |
Affects Versions |
|---|---|---|---|---|
117409 |
WebUI |
An issue where an option value that does not change when assigning a node group after creating a node policy appears to have changed |
5.0.44 |
|
117204 |
Center, Genian Syncer |
An issue where Mobilebrowser data cannot be updated when uploading Genie data via Syncer, and an issue where CVE data versions cannot be updated |
4.1.0 |
|
117179 |
Center, Sensor |
[General-purpose OS] A problem where the sensor does not work as a distribution server |
5.0.29 |
|
116850 |
Center, Sensor |
Policy Server/Sensor Memory Rick (Genie Update and Node Scan (https)) issues |
4.0.14 |
|
116693 |
WebUI |
Node addition field - error not reflecting user selector setting options |
5.0.22 |
|
116649 |
WebUI |
Missing license and notification message display |
6.0.0 |
|
116622 |
WebUI |
An error where the output is broken if the nodegroup's CWP message has a tag |
5.0.37 |
|
116612 |
WebUI |
A problem where a warning message is output even when the log server (elasticsearch) is in a normal state |
5.0.23 |
|
116606 |
WebUI |
An issue where node group conditions do not work in the node list query API |
5.0.54, 6.0.14 |
|
116577 |
Windows Agent |
If the agent runs on a local system, the Store app fails to be deleted through the program removal plug-in |
5.0.42, 6.0.0 |
|
115782 |
ElasticSearch |
[General-purpose OS] An issue where ES does not run properly intermittently because communication with Elastic is blocked by the Iptables policy |
5.0.31 |
|
115635 |
Sensor |
[General-purpose OS] A problem where a DHCP server that assigns the same DNS as the sensor is detected as an abnormal DHCP server |
||
115608 |
WebUI |
Modify the search popup to work when the 'Add Node Field - User Selector' option does not allow text entry |
5.0.22 |
|
115567 |
WebUI |
Audit > An issue where the loading image does not disappear due to a JavaScript error when clicking Application Detail on the Flow list screen |
6.0.8 |
|
115370 |
WebUI |
An issue where when creating a time object from the Policy > Object > Time menu causes the date to be stored incorrectly if the System Timezone and Administrator Timezone are different |
5.0.34 |
|
115297 |
WebUI |
An issue where unused IPs cannot be selected in the matrix view when the administrator's management scope is set to a sensor group |
4.0.117, 5.0.14 |
|
115246 |
CWP |
Your security key has already been generated during the CWP security key issuance process during the initial authentication after user registration in Google OTP 2-step authentication. A phenomenon where the phrase “” is displayed |
6.0.13 |
|
115118 |
Center |
A problem that may fail depending on the OS type when upgrading the deb image through the console UI |
5.0.42, 6.0.12 |
|
115105 |
Enforcer |
An issue where the blocking node appears to be communicating due to a SYN-ACK response from the sensor even when CWP is disabled |
5.0.0 |
|
115040 |
Docker, Sensor |
A problem where the DKNS sensor is registered as a new sensor every time the IP is changed |
6.0.0 |
|
115019 |
GenianOS |
The problem of not being able to connect to the Genian Monitor program from the IP that allows access to the management WEBUI |
5.0.42, 5.0.50, 5.0.53, 6.0.13 |
|
114878 |
macOS Agent |
macOS screensaver settings are not enforced when users manually change them |
5.0.45, 6.0.2 |
|
114830 |
Linux Agent |
Linux Agent, Agent-related UI behavior errors (tray icon, etc.) due to failure to collect login user information |
6.0.15, 5.0.55 (LTS) |
|
114819 |
WebUI |
Fixed an issue where Disk column content was not displayed on the system management screen |
5.0.23 |
|
114639 |
WebUI |
An issue where regular users are searched even when the visitor's email approval target is an administrator |
4.0.M8 |
|
114611 |
WebUI |
A problem where the node management screen is moved through a quick search, and when performing a batch task after selecting all nodes, a message that no nodes have been selected is displayed |
4.0.114, 5.0.11 |
|
114555 |
WebUI |
Subcategories are not displayed in the multi-level category structure within the status filter node group |
5.0.42, 5.0.45, 6.0.2 |
|
114516 |
Enforcer |
|
4.0.17 |
|
114498 |
Center, Sensor |
An issue where the PROCMON daemon may hang when changing RADIUS settings |
6.0.3 |
|
114309 |
WebUI |
A problem where query reports are not generated when the DB/Log server is separated |
5.0.37 |
|
114297 |
WebUI |
Fixed an issue where the number of NIC vendor status did not match |
||
114258 |
WebUI |
An error occurs when registering a node using the node addition field (user selector-mapping column name) |
5.0.42, 5.0.50, 6.0.11 |
|
114230 |
WebUI |
A problem where the department tree of the device usage application form does not appear in a cloud environment |
5.0.52, 6.0.13 |
|
114195 |
WebUI |
An issue where existing settings are not selected as default values when modifying agent actions in node group conditions |
5.0.45 |
|
114195 |
WebUI |
There is no change in the tag, but the node details are also updated and processed when the node details are modified |
5.0.22, 6.0.4 |
|
114195 |
WebUI |
A problem where the data does not include the parent department when selecting the user department in the node group condition |
5.0.35 |
|
114150 |
Center |
A problem where a multi-sensor device is registered in an approved state when re-registered after deleting it |
6.0.8, 5.0.50 |
|
114063 |
WebUI |
An issue where the changed information was updated and not displayed when the tab was moved after updating the node information |
5.0.50 |
|
114007 |
WebUI |
An issue where the tree list for all users by department does not appear |
6.0.7 |
|
113966 |
WebUI |
Fixed an issue where the content in the node management department name column was not displayed properly |
6.0.5, 5.0.50 |
|
113812 |
Center |
Unable to perform control actions within permission policies and Windows Firewall uncontrollable errors |
6.0.13 |
|
113812 |
WebUI |
An error page occurred when exporting node management to Excel in the Compose version |
5.0.48, 6.0.6 |
|
113812 |
Sensor |
Intermittent dnsmasq daemon restart symptoms |
6.0.12, 5.0.53 |
|
113812 |
Windows Agent |
If you turn off server certificate verification for the wireless profile (EAP-TTLS) in the wireless connection manager, you cannot connect |
5.0.49, 6.0.7 |
|
113812 |
ulogd |
A problem where disk capacity is insufficient due to a problem where logrotate does not work with ULOGD debug logs |
6.0.0 |
|
113812 |
WebUI |
Fixed an issue where batch sensor settings and operation modes were not applied |
6.0.8 |
|
113812 |
WebUI |
A problem where the session expiration page is output and node information is not displayed properly when connecting to CWP |
6.0.15 |
|
113812 |
Center |
A problem where the sensor is not authenticated because RADIUS is not automatically allowed when using the general-purpose OS ZTNA client |
6.0.10 |
|
113812 |
Windows Agent |
An issue where the agent tray icon is not displayed when connecting remotely to a PC |
5.0.0, 6.0.0 |
|
113812 |
WebUI |
An error occurred when adding the same conditions to the user/new application option in the visitor's purpose settings |
4.0.11 |
|
113812 |
WebUI |
An error where the list output becomes strange after modifying a custom field |
4.0.11 |
|
113812 |
Center |
SMTP authentication integration - Abnormal user authentication issue when using [account] @ [domain] ID format |
5.0.53 |
|
113812 |
Linux Agent |
Linux Agent misses gathering some network interface information |
5.0.51, 6.0.12 |
|
113812 |
WebUI |
Node Details Software Information Tab Pagination ui Unification |
6.0.4, 6.0.9 |
|
113812 |
Center |
Problems with "File read failed.ERRMSG=Isa directory" debug during policy server installation |
5.0.42, 4.0.152 |
|
113812 |
Sensor |
A problem where IPTABLES is created in duplicate when changing http/https port settings |
4.0.17 |
|
113812 |
Sensor |
An issue where TCP packets are blocked in a redundant environment |
6.0.15 |
|
113812 |
Linux Agent |
Linux Agent, an issue where the tray icon is not displayed when switching to a user who is already logged in |
5.0.41, 6.0.0 |
|
113812 |
WebUI |
A problem where node management does not proceed when exporting to Excel |
4.0.2 |
|
113812 |
WebUI |
A problem where some information is missing when copying device group policies |
6.0.3, 5.0.46 |
|
113812 |
Center |
A problem where the number of IPs that can be assigned decreases after ZTNA authentication replacement fails |
6.0.14 |
|
113812 |
WebUI |
Error where WebUI smart help settings are not displayed |
5.0.49, 6.0.7 |
|
113318 |
WebUI |
Symptoms of not being able to search for Hangul in the software settings window under node group conditions |
5.0.35 |