Genian ZTNA 6.0.18 Release Notes (2023-12-19)
Last Updated: 2024-02-01
Security Vulnerability
Revision |
Key |
Components |
Description |
Affects Versions |
CVSS Score |
|---|---|---|---|---|---|
123781 |
WebUI |
Vulnerability where information can be modified by directly entering a URL to an unauthorised page |
3.1 |
||
123284 |
WebUI |
File export permission bypass vulnerability for unauthorized administrators through the Audit Log REST API |
3.1 |
New Features and Improvements
Revision |
Key |
Components |
Description |
Affects Versions |
|---|---|---|---|---|
123464 |
Sensor |
Fixed an issue where pubilc IP cannot be imported when changing sensor operation modes and policies |
||
122922 |
WebUI |
6.0 widget added |
||
122821 |
WebUI |
Improved so that IDP-enabled SSO authentication requests can be authenticated when linking SAML authentication |
||
122708 |
WebUI |
Added a divider line to separate SAML login from existing login buttons, and improved login button output when setting multiple IdPs |
||
122708 |
Center |
Improved functionality so that secondary webhook authentication can be linked |
||
122708 |
WebUI |
Improvements to the alarm output when external access is permitted |
||
122708 |
Linux Agent |
Linux Agent modified to display an error message sent from the server when the ZTNA Client connection fails |
||
122708 |
Authsync |
Improved REST API Server-type information synchronization so that paging parameters included in response headers can be used |
||
122708 |
WebUI |
Added an IP/MAC additional field item to change node properties |
||
122708 |
Sensor |
Improved to sign with ZTNA Gateway server certificate center CA |
||
122708 |
Center |
ZTNA client fixed IP allocation failure message delivered to client |
||
122708 |
Center |
An issue where an audit record is not left when ZTNA fixed IP allocation fails |
||
122708 |
Sensor |
Improved exception handling for event socket unconfigured logs when creating an event socket |
||
122708 |
WebUI |
Improved to be able to browse the nodegroup criteria filter list |
||
122708 |
WebUI |
Improved so that an additional path path can be entered when entering Domain on the application definition screen |
||
122708 |
-Unknown/None- |
Improved the sysinspect script to work with the changed ES account when the ES account is changed |
||
122708 |
WebUI |
Fixed an issue where an error log was left when calling the device modification API |
||
122708 |
Database |
Add device information to add/delete 'USB information' audit log |
||
122708 |
Windows Agent |
Development of plug-ins linked to external authentication through agents |
||
122708 |
Windows Agent |
Exosphere vaccine information collection |
||
122708 |
Zero Trust Security |
[ZTNA] Add RADIUS accounting attribute generated when connecting to a client |
||
122708 |
Center |
Improved so that multiple URLs can be set when setting a search filter webhook |
||
122708 |
Sensor |
A problem where traffic information is not output when using ZTNA GW (Global-line) |
||
122708 |
WebUI |
Improved the quick search in the top menu to search for (IP/equipment) owners and ownership departments |
||
122708 |
WebUI |
Function to view process status information in the cloud collector |
||
122708 |
MySQL |
[General-purpose OS] Improved to prevent reuse of MySQL passwords |
||
122708 |
Center |
mysqldump execution error when updating CLOUD GPDB |
||
122708 |
IPMGMT |
Disable access when the ipmgmt page function is not used |
||
122708 |
GenianOS |
GNOS kernel version upgrade (5.15.0) |
||
122708 |
Authsync, Database |
When storing department codes, compress them with a hash function to prevent oversize |
5.0.45, 6.0.2 |
|
122708 |
GNOS |
Fixed an issue where procmond was executed repeatedly when running httpd-driven scripts |
||
122708 |
Center |
In-product self-signed certificate automatic renewal function |
||
122708 |
Sensor |
Apply URL+pathpattern and userAgent rules when detecting an application using APP DB |
||
122708 |
WebUI |
Errors outside the password rules guide phrase area when changing the ZTNA password |
||
122708 |
Center |
Added a cache deletion option when setting up the proxy service |
||
104536 |
Database |
GNOS MySQL 8.0 upgrade |
Issues Fixed
Revision |
Key |
Components |
Description |
Affects Versions |
|---|---|---|---|---|
123883 |
WebUI |
System > System Management > Image Selection Upgrade Popup Window Error |
6.0.18 |
|
123767 |
MySQL |
An issue where the daemon does not run after upgrading to the MySQL 8.0 version image on a device with an SSD |
6.0.18, 5.0.58 |
|
123721 |
Center |
A problem where Google OTP authentication cannot be performed because the Google OTP security key issued by the center cannot be sent to the agent |
6.0.13 |
|
123497 |
Authsync |
If a MySQL function is used in the user department ID column name of information synchronization, an incorrect policy may be assigned due to a failure in department synchronization |
6.0.18, 5.0.58 |
|
123435 |
WebUI |
In the tomcat log, by the following code has not been detected to the pool, no symptoms of connecting to the web console after a large number of cases |
5.0.20 |
|
123340 |
macOS Agent |
A problem where plug-ins don't work according to macOS internal/external conditions |
6.0.5, 5.0.48 |
|
123298 |
WebUI |
A problem where the list is not displayed when clicking on the number of members in each group in the user group status |
4.0.156, 6.0.16, 5.0.57 |
|
123293 |
Sensor |
A problem where the sensor process terminates abnormally when the same event is received from the sensor device |
4.0.64 |
|
123291 |
Authsync |
A problem where if the connection to the information synchronization server fails, it is treated as a deleted user and all users are deleted |
6.0.9 |
|
123281 |
WebUI |
Errors where certain items are not modified in the Nodes REST API |
5.0.8, 4.0.111 |
|
123274 |
WebUI |
A problem where tree-structured data components are not output |
6.0.16, 5.0.55 (LTS), 6.0.17, 5.0.57 |
|
123268 |
GenianOS |
[General-purpose OS] An issue where aes256 commands are not executed during initial operation |
5.0.42, 6.0.16, 5.0.55 (LTS), 5.0.56 |
|
123266 |
WebUI |
Information display error displayed as a tooltip on ip and mac on the audit log and node detailed history management screen |
6.0.4, 5.0.47 |
|
123166 |
Sensor |
Symptoms where the sensor system stops due to a deadlock when changing the sensor mode continuously |
5.0.57, 4.0.157, 6.0.19 |
|
123133 |
Linux Agent |
Linux Agent intermittently misses sending some action system information |
5.0.50, 6.0.15 |
|
123055 |
Center |
In an environment where many sensor debugs are sent to the center, a load may be caused by deleting old debugs when the center is rebooted |
5.0.0 |
|
123046 |
Center |
An issue where the log filter action does not work when the ES log filter query result is greater than 2K |
4.1.M6 |
|
122946 |
Center |
An issue where ES index (nac-filter) for log filters is deleted during the ES log cleaning cycle |
5.0.50, 6.0.11 |
|
122840 |
Center |
[General-purpose OS] An issue where the LDAPsearch command results fail due to the LDAP configuration file being set to the wrong file in the general-purpose OS |
5.0.42 |
|
122708 |
Windows Agent |
"Outsider Extension (Registry)"Problems that cannot be decertified when applying the action for the first time |
4.0.0, 5.0.0, 6.0.0 |
|
122708 |
WebUI |
An issue where existing tags are removed when adding tags in node details |
6.0.18 |
|
122708 |
WebUI |
An issue where the dashboard tag cloud type widget continues to load |
6.0.14 |
|
122708 |
WebUI |
An issue where the data area is not output when searching with invalid conditions in the Flow log |
6.0.0 |
|
122708 |
WebUI |
Error creating and modifying RADIUS policies with the operator account |
5.0.30 |
|
122708 |
Center, CLOUD |
An issue where generic OS sensor upgrades are not performed automatically when upgrading the CLOUD policy server |
||
122708 |
WebUI |
The problem of incorrect aggregation when generating daily reports for each administrator based on the scope of management |
6.0.17, 5.0.57 |
|
122708 |
Sensor |
A problem where the cache service does not run even when the patch proxy service is set to ON |
5.0.55 (LTS), 4.0.157 |
|
122708 |
WebUI |
Node/control policy issues not being fixed |
4.0.157, 6.0.18, 5.0.58 |
|
122708 |
WebUI |
An issue where error messages appear in irrelevant locations in the nodegroup filter settings popup |
6.0.14 |
|
122708 |
Sensor |
A problem where RADIUS authentication requests are sent to the default gateway even if an interface to communicate with the policy server is specified |
6.0.14 |
|
122708 |
WebUI |
An issue where the login failure count is not reset after a successful login when logging in to the management console using secondary authentication |
4.0.10 |
|
122708 |
Windows Agent |
A problem where all the name value defined in the URL button in the agent authentication window is not output |
5.0.42, 6.0.0 |
|
122708 |
Authsync |
A problem where rank synchronization fails when there is no rank information in the local DB during rank synchronization |
6.0.6, 5.0.49 |
|
122708 |
WebUI |
The problem of not being able to authenticate when accessing the application results screen again after modifying the user information on the CWP user registration application result search screen |
5.0.32 |
|
122708 |
WebUI |
A problem where tag names can be entered with a space (Space) |
4.0.M7 |
|
122708 |
procmond |
An issue where when Tomcat is restarted, the audit log says tomcat9 even though it's not the tomcat9 version |
5.0.53, 6.0.15 |
|
122708 |
WebUI |
An issue where the vertical layer area overlaps when entering 3 or more lines on the login screen |
6.0.8 |
|
122708 |
Center |
An issue where “unknown” and “no information” date information collected from agents is displayed as “1970-01-01” |
||
122708 |
ElasticSearch, gnlogin |
An issue where the audit log is not saved when the log server authentication information is changed before the log server is running |
||
122708 |
WebUI |
The service control menu was removed from the CLOUD version, but an issue where it can be accessed from the top menu |
5.0.29 |
|
122708 |
Center |
An issue where the agent plug-in operates based on the policy server's time zone |
||
122708 |
WebUI |
An issue where data-linked values are incorrectly delivered when the fields are not sorted in the real-time mode of the audit log |
6.0.2 |
|
122708 |
Windows Agent |
A problem where virus treatment audits are not recorded with the vaccine information collection plug-in |
4.0.144, 5.0.41 |
|
122708 |
WebUI |
An issue where items in ConfEngine's addRemove component are modified incorrectly |
5.0.18 |
|
122708 |
WebUI |
An issue where calendar components used in some date input fields are displayed only in English |
5.0.20, 6.0.0 |
|
122708 |
WebUI |
Node Management > Problem with the icon not being displayed in the Risk column |
5.0.53, 6.0.13 |
|
122708 |
Windows Agent |
An issue where the latest information in the information collection plug-in is not updated intermittently |
5.0.0, 6.0.0 |
|
122708 |
Linux Agent |
Linux Agent, an issue where unpartitioned storage device information is not collected |
5.0.41, 6.0.0 |
|
122708 |
WebUI |
An issue where the update time is not updated when modifying a node group in a node/control policy |
6.0.18 |
|
122708 |
Sensor |
Using "NMAP TCP SCAN" in Sensor Node Information Check Settings Not Applicable |
5.0.40 |
|
122708 |
WebUI |
An issue where policy updates fail when modifying security group policy conditions |
6.0.3 |
|
122708 |
WebUI |
A problem where content is not visible as much as the bottom button area when vertical scrolling occurs in the dialog window |
6.0.1 |
|
122708 |
WebUI |
IP Change Prohibited (Designated IP Band) in IP Matrix View - Single IP Violated icon is not displayed |
4.0.8 |