Genian ZTNA 6.0.18 Release Notes (2023-12-19) =================================================================================== Last Updated: 2024-02-01 Security Vulnerability ---------------------------------- .. csv-table:: :header: "Revision", "Key", "Components", "Description", "Affects Versions", "CVSS Score" :class: datatable :widths: 10 10 15 50 15 10 "123781","`GN-26393 `_","WebUI","Vulnerability where information can be modified by directly entering a URL to an unauthorised page","",3.1 "123284","`GN-26390 `_","WebUI","File export permission bypass vulnerability for unauthorized administrators through the Audit Log REST API","",3.1 New Features and Improvements ---------------------------------- .. csv-table:: :header: "Revision", "Key", "Components", "Description", "Affects Versions" :class: datatable :widths: 10 10 15 60 15 "123464","`GN-27625 `_","Sensor","Fixed an issue where pubilc IP cannot be imported when changing sensor operation modes and policies","" "122922","`GN-25063 `_","WebUI","6.0 widget added","" "122821","`GN-27491 `_","WebUI","Improved so that IDP-enabled SSO authentication requests can be authenticated when linking SAML authentication","" "122708","`GN-27476 `_","WebUI","Added a divider line to separate SAML login from existing login buttons, and improved login button output when setting multiple IdPs","" "122708","`GN-27344 `_","Center","Improved functionality so that secondary webhook authentication can be linked","" "122708","`GN-27320 `_","WebUI","Improvements to the alarm output when external access is permitted","" "122708","`GN-27249 `_","Linux Agent","Linux Agent modified to display an error message sent from the server when the ZTNA Client connection fails","" "122708","`GN-27243 `_","Authsync","Improved REST API Server-type information synchronization so that paging parameters included in response headers can be used","" "122708","`GN-27201 `_","WebUI","Added an IP/MAC additional field item to change node properties","" "122708","`GN-27140 `_","Sensor","Improved to sign with ZTNA Gateway server certificate center CA","" "122708","`GN-27100 `_","Center","ZTNA client fixed IP allocation failure message delivered to client","" "122708","`GN-27090 `_","Center","An issue where an audit record is not left when ZTNA fixed IP allocation fails","" "122708","`GN-27077 `_","Sensor","Improved exception handling for event socket unconfigured logs when creating an event socket","" "122708","`GN-27068 `_","WebUI","Improved to be able to browse the nodegroup criteria filter list","" "122708","`GN-27052 `_","WebUI","Improved so that an additional path path can be entered when entering Domain on the application definition screen","" "122708","`GN-26955 `_","-Unknown/None-","Improved the sysinspect script to work with the changed ES account when the ES account is changed","" "122708","`GN-26942 `_","WebUI","Fixed an issue where an error log was left when calling the device modification API","" "122708","`GN-26929 `_","Database","Add device information to add/delete 'USB information' audit log","" "122708","`GN-26921 `_","Windows Agent","Development of plug-ins linked to external authentication through agents","" "122708","`GN-26913 `_","Windows Agent","Exosphere vaccine information collection","" "122708","`GN-26909 `_","Zero Trust Security","[ZTNA] Add RADIUS accounting attribute generated when connecting to a client","" "122708","`GN-26907 `_","Center","Improved so that multiple URLs can be set when setting a search filter webhook","" "122708","`GN-26889 `_","Sensor","A problem where traffic information is not output when using ZTNA GW (Global-line)","" "122708","`GN-26873 `_","WebUI","Improved the quick search in the top menu to search for (IP/equipment) owners and ownership departments","" "122708","`GN-26860 `_","WebUI","Function to view process status information in the cloud collector","" "122708","`GN-26855 `_","MySQL","[General-purpose OS] Improved to prevent reuse of MySQL passwords","" "122708","`GN-26842 `_","Center","mysqldump execution error when updating CLOUD GPDB","" "122708","`GN-26575 `_","IPMGMT","Disable access when the ipmgmt page function is not used","" "122708","`GN-26545 `_","GenianOS","GNOS kernel version upgrade (5.15.0)","" "122708","`GN-26482 `_","Authsync, Database","When storing department codes, compress them with a hash function to prevent oversize","5.0.45, 6.0.2" "122708","`GN-26325 `_","GNOS","Fixed an issue where procmond was executed repeatedly when running httpd-driven scripts","" "122708","`GN-26284 `_","Center","In-product self-signed certificate automatic renewal function","" "122708","`GN-26021 `_","Sensor","Apply URL+pathpattern and userAgent rules when detecting an application using APP DB","" "122708","`GN-25674 `_","WebUI","Errors outside the password rules guide phrase area when changing the ZTNA password","" "122708","`GN-25533 `_","Center","Added a cache deletion option when setting up the proxy service","" "104536","`GN-22567 `_","Database","GNOS MySQL 8.0 upgrade","" Issues Fixed ---------------------------------- .. csv-table:: :header: "Revision", "Key", "Components", "Description", "Affects Versions" :class: datatable :widths: 10 10 15 60 15 "123883","`GN-27681 `_","WebUI","System > System Management > Image Selection Upgrade Popup Window Error","6.0.18" "123767","`GN-27674 `_","MySQL","An issue where the daemon does not run after upgrading to the MySQL 8.0 version image on a device with an SSD","6.0.18, 5.0.58" "123721","`GN-27652 `_","Center","A problem where Google OTP authentication cannot be performed because the Google OTP security key issued by the center cannot be sent to the agent","6.0.13" "123497","`GN-27646 `_","Authsync","If a MySQL function is used in the user department ID column name of information synchronization, an incorrect policy may be assigned due to a failure in department synchronization","6.0.18, 5.0.58" "123435","`GN-27641 `_","WebUI","In the tomcat log, by the following code has not been detected to the pool, no symptoms of connecting to the web console after a large number of cases","5.0.20" "123340","`GN-27399 `_","macOS Agent","A problem where plug-ins don't work according to macOS internal/external conditions","6.0.5, 5.0.48" "123298","`GN-27573 `_","WebUI","A problem where the list is not displayed when clicking on the number of members in each group in the user group status ","4.0.156, 6.0.16, 5.0.57" "123293","`GN-27401 `_","Sensor","A problem where the sensor process terminates abnormally when the same event is received from the sensor device","4.0.64" "123291","`GN-27541 `_","Authsync","A problem where if the connection to the information synchronization server fails, it is treated as a deleted user and all users are deleted","6.0.9" "123281","`GN-27517 `_","WebUI","Errors where certain items are not modified in the Nodes REST API","5.0.8, 4.0.111" "123274","`GN-27550 `_","WebUI","A problem where tree-structured data components are not output","6.0.16, 5.0.55 (LTS), 6.0.17, 5.0.57" "123268","`GN-27460 `_","GenianOS","[General-purpose OS] An issue where aes256 commands are not executed during initial operation","5.0.42, 6.0.16, 5.0.55 (LTS), 5.0.56" "123266","`GN-26993 `_","WebUI","Information display error displayed as a tooltip on ip and mac on the audit log and node detailed history management screen","6.0.4, 5.0.47" "123166","`GN-27519 `_","Sensor","Symptoms where the sensor system stops due to a deadlock when changing the sensor mode continuously","5.0.57, 4.0.157, 6.0.19" "123133","`GN-27496 `_","Linux Agent","Linux Agent intermittently misses sending some action system information","5.0.50, 6.0.15" "123055","`GN-24708 `_","Center","In an environment where many sensor debugs are sent to the center, a load may be caused by deleting old debugs when the center is rebooted","5.0.0" "123046","`GN-27575 `_","Center","An issue where the log filter action does not work when the ES log filter query result is greater than 2K","4.1.M6" "122946","`GN-27574 `_","Center","An issue where ES index (nac-filter) for log filters is deleted during the ES log cleaning cycle","5.0.50, 6.0.11" "122840","`GN-27561 `_","Center","[General-purpose OS] An issue where the LDAPsearch command results fail due to the LDAP configuration file being set to the wrong file in the general-purpose OS","5.0.42" "122708","`GN-27500 `_","Windows Agent","""Outsider Extension (Registry)""Problems that cannot be decertified when applying the action for the first time","4.0.0, 5.0.0, 6.0.0" "122708","`GN-27438 `_","WebUI","An issue where existing tags are removed when adding tags in node details","6.0.18" "122708","`GN-27424 `_","WebUI","An issue where the dashboard tag cloud type widget continues to load","6.0.14" "122708","`GN-27419 `_","WebUI","An issue where the data area is not output when searching with invalid conditions in the Flow log","6.0.0" "122708","`GN-27397 `_","WebUI","Error creating and modifying RADIUS policies with the operator account","5.0.30" "122708","`GN-27389 `_","Center, CLOUD","An issue where generic OS sensor upgrades are not performed automatically when upgrading the CLOUD policy server","" "122708","`GN-27368 `_","WebUI","The problem of incorrect aggregation when generating daily reports for each administrator based on the scope of management","6.0.17, 5.0.57" "122708","`GN-27356 `_","Sensor","A problem where the cache service does not run even when the patch proxy service is set to ON","5.0.55 (LTS), 4.0.157" "122708","`GN-27321 `_","WebUI","Node/control policy issues not being fixed","4.0.157, 6.0.18, 5.0.58" "122708","`GN-27293 `_","WebUI","An issue where error messages appear in irrelevant locations in the nodegroup filter settings popup","6.0.14" "122708","`GN-27268 `_","Sensor","A problem where RADIUS authentication requests are sent to the default gateway even if an interface to communicate with the policy server is specified","6.0.14" "122708","`GN-27148 `_","WebUI","An issue where the login failure count is not reset after a successful login when logging in to the management console using secondary authentication","4.0.10" "122708","`GN-27119 `_","Windows Agent","A problem where all the name value defined in the URL button in the agent authentication window is not output","5.0.42, 6.0.0" "122708","`GN-27111 `_","Authsync","A problem where rank synchronization fails when there is no rank information in the local DB during rank synchronization","6.0.6, 5.0.49" "122708","`GN-27110 `_","WebUI","The problem of not being able to authenticate when accessing the application results screen again after modifying the user information on the CWP user registration application result search screen","5.0.32" "122708","`GN-27059 `_","WebUI","A problem where tag names can be entered with a space (Space)","4.0.M7" "122708","`GN-27057 `_","procmond","An issue where when Tomcat is restarted, the audit log says tomcat9 even though it's not the tomcat9 version","5.0.53, 6.0.15" "122708","`GN-27048 `_","WebUI","An issue where the vertical layer area overlaps when entering 3 or more lines on the login screen","6.0.8" "122708","`GN-27040 `_","Center","An issue where “unknown” and “no information” date information collected from agents is displayed as “1970-01-01”","" "122708","`GN-27017 `_","ElasticSearch, gnlogin","An issue where the audit log is not saved when the log server authentication information is changed before the log server is running","" "122708","`GN-27006 `_","WebUI","The service control menu was removed from the CLOUD version, but an issue where it can be accessed from the top menu","5.0.29" "122708","`GN-26992 `_","Center","An issue where the agent plug-in operates based on the policy server's time zone","" "122708","`GN-26953 `_","WebUI","An issue where data-linked values are incorrectly delivered when the fields are not sorted in the real-time mode of the audit log","6.0.2" "122708","`GN-26951 `_","Windows Agent","A problem where virus treatment audits are not recorded with the vaccine information collection plug-in","4.0.144, 5.0.41" "122708","`GN-26941 `_","WebUI","An issue where items in ConfEngine's addRemove component are modified incorrectly","5.0.18" "122708","`GN-26933 `_","WebUI","An issue where calendar components used in some date input fields are displayed only in English","5.0.20, 6.0.0" "122708","`GN-26904 `_","WebUI","Node Management > Problem with the icon not being displayed in the Risk column","5.0.53, 6.0.13" "122708","`GN-26864 `_","Windows Agent","An issue where the latest information in the information collection plug-in is not updated intermittently","5.0.0, 6.0.0" "122708","`GN-26859 `_","Linux Agent","Linux Agent, an issue where unpartitioned storage device information is not collected","5.0.41, 6.0.0" "122708","`GN-26777 `_","WebUI","An issue where the update time is not updated when modifying a node group in a node/control policy ","6.0.18" "122708","`GN-26742 `_","Sensor","Using ""NMAP TCP SCAN"" in Sensor Node Information Check Settings Not Applicable","5.0.40" "122708","`GN-26415 `_","WebUI","An issue where policy updates fail when modifying security group policy conditions","6.0.3" "122708","`GN-26032 `_","WebUI","A problem where content is not visible as much as the bottom button area when vertical scrolling occurs in the dialog window ","6.0.1" "122708","`GN-25805 `_","WebUI","IP Change Prohibited (Designated IP Band) in IP Matrix View - Single IP Violated icon is not displayed","4.0.8"