Genian ZTNA 6.0.46 (R-1) Release Notes (2026-05-04)
Last Updated: 2026-06-04
Security Vulnerability
Revision |
Key |
Components |
Description |
Affects Versions |
CVSS Score |
|---|---|---|---|---|---|
149327 |
WebUI |
An issue where the API key of a higher administrator can be queried with an administrator account with low privileges |
5.0.13 |
2.7 |
|
149321 |
WebUI |
SQL Injection using dashboard basic widget information - In band (union-based) |
6.0.0 |
2.7 |
|
149291 |
Center |
Unauthenticated user's random file creation vulnerability in the /disk/data/temp/ directory |
5.0.0, 6.0.0 |
5.5 |
|
149262 |
Windows Agent |
Local privilege escalation vulnerability due to failure to set Named Pipe access control in GnStart.exe |
5.0.0, 6.0.0 |
4.5 |
New Features and Improvements
Revision |
Key |
Components |
Description |
Affects Versions |
|---|---|---|---|---|
148028 |
Database |
Change the domain to verify the public IP in NAC |
||
148028 |
WebUI |
When exporting Excel, the bottom row cells are merged, improving inconveniences such as sorting |
||
148028 |
WebUI |
Improved so that when adding a widget in manual dashboard query mode, it is added after data is queried |
||
148028 |
Windows Agent |
Apply Secure Wipe (Secure Wipe) to the wireless LAN profile wireless password memory |
||
148028 |
Windows Agent |
Improved way firewall rules are stored in the firewall control plug-in (capacity limit removed) |
||
148028 |
Center |
Add a macro representing port information on the distribution server ({_DISTSERVERPORT}) |
||
148028 |
WebUI |
ZTNA Client Device Count Status Line Chart Widget |
||
148028 |
Center |
[General-purpose OS] Improved so that httpd timeout can be set |
||
148028 |
Linux Agent |
Improved so that users can know device groups blocked by Linux Agent and device control plug-ins |
||
148028 |
Sensor |
Added a system monitoring function item for sensor equipment |
||
148028 |
Center, Sensor |
Added monitoring tool to connect to Policy Server and ZTNA GW and check service status |
||
148028 |
Center, Sensor |
Improved to maintain the tunnel with existing information even if KA is disconnected when connecting to a broker VPN tunnel |
||
148028 |
WebUI |
Improved data displayed in Settings > User Authentication > Management Role Usage tooltips |
||
148028 |
macOS Agent |
macOS agent improved to detect specific processes (OpenClaw, etc.) when checking execution conditions |
||
148028 |
Zero Trust Security |
Modified to use a password when connecting to the cassandra database used by the SDP controller |
6.0.33 |
|
148028 |
WebUI |
Improved validation of management console input components |
||
148028 |
WebUI |
Improved so that the agent icon is displayed in node management when using an IOS integrated agent |
||
148028 |
macOS Agent |
macOS agent converts and applies local time according to the time zone set (stored in DB) in the time object |
||
148028 |
Windows Agent |
Improved so that if service registration fails during an agent update, it can work after a reboot |
||
148028 |
SoftEtherVpn, Zero Trust Security |
[CC Authentication] Verification Password Algorithm (Magic Crypto) function added |
||
148028 |
WebUI |
Added exposure attribute (hidden, Readonly) feature in Workflow |
Issues Fixed
Revision |
Key |
Components |
Description |
Affects Versions |
|---|---|---|---|---|
149374 |
WebUI |
A problem where changes are not reflected when creating/modifying file distribution V2 node actions |
6.0.46 (R-1), 5.0.86 (R-1) |
|
149241 |
Zero Trust Security |
Symptoms of intermittent ovpn file generation failure when changing site settings |
6.0.0 |
|
148028 |
-Unknown/None- |
An error where the WSUS server IP is not included in the PAC when setting up a proxy environment (operating system update proxy service setting) in a general-purpose OS environment |
5.0.43, 4.0.146, 6.0.1 |
|
148028 |
Zero Trust Security |
ZTNA Client logs display account information incorrectly when the account name has a hyphen (-) |
6.0.1 |
|
148028 |
DKNS |
Problems that are allowed even if it is a blocking policy in DKNS |
6.0.1 |
|
148028 |
RADIUSD |
A problem where the dynamic authorization function using RADIUS CoA does not work in environments that do not support IPv6 |
6.0.0 |
|
148028 |
WebUI |
A problem where the node policy code (ID) name is displayed in the node group's usage confirmation tooltip |
6.0.41, 5.0.81 |
|
148028 |
Sensor |
An iptables check error occurs when using the broker function in DKNS |
6.0.42, 5.0.82 |
|
148028 |
WebUI |
An issue where the update time is not displayed in the node operating system update information |
6.0.29 |
|
148028 |
GenianOS |
An issue that delays the CoreOS NAC installation and boot process |
6.0.45, 5.0.85 |
|
148028 |
Sensor |
An issue where automatic renewal of the sensor device server certificate fails |
6.0.23, 5.0.63 |
|
148028 |
WebUI |
An issue where alarms for items with notification messages set are not displayed when values are changed |
6.0.38 |
|
148028 |
WebUI |
An issue where aggregation (number of nodes) is incorrect when searching by department name in quick search |
6.0.36 |
|
148028 |
WebUI |
A phenomenon where when a node group is added without a risk score set, the risk score in the list is displayed as an empty value and displayed as 0 in the basic information of the added node group |
6.0.32 |
|
148028 |
WebUI |
Problems with uploading items in Settings > Preferences > IP Management > IP usage application items not being uploaded as files |
6.0.39 |
|
148028 |
Zero Trust Security |
An issue where the gnlogin ssh port change function does not work on CoreOS |
6.0.45, 5.0.85 |
|
148028 |
WebUI |
A problem where the date is displayed as the same day when the node action is performed at the specified time (date+time) is saved |
6.0.32, 5.0.72 |
|
148028 |
Windows Agent |
Fixed an issue where the screen saver control time for appearance and personal settings was not applied in the initial PC environment |
6.0.19, 5.0.59 |
|
148028 |
WebUI |
Symptoms of values responding to iFELSE not being transferred properly when testing the UI after setting up the workflow |
6.0.38 |
|
148028 |
WebUI |
When changing user information in CWP, incorrect administrator (ADMIN) information in the audit log |
4.0.16 |
|
148028 |
macOS Agent |
macOS agent fails to recover due to integrity compromise |
5.0.11, 6.0.0 |
|
148028 |
Windows Agent |
An issue where the pop-up menu is displayed abnormally in the agent tray menu |
5.0.0, 6.0.0 |
|
148028 |
Zero Trust Security |
A problem with line jams when the SDP service is running with systemd |
6.0.32 |
|
148028 |
CWP, WebUI |
Settings > Design Template Security Pledge Preview Error |
6.0.45 |
|
148028 |
WebUI |
ZTNA Client Sessions Status Widget Count Quantity Mismatch Issue |
6.0.2 |
|
148028 |
WebUI |
An issue where the authenticated user's department name cannot be searched using the text keyword in the quick search or node search bar |
5.0.26 |
|
148028 |
macOS Agent |
macOS agent, pop-ups occur repeatedly even when user notification message pop-ups are not used |
5.0.0, 6.0.0 |
|
148028 |
WebUI |
An issue with Firefox not being able to download audit logs |
6.0.41 |
|
148028 |
WebUI |
A phenomenon where modifications are not modified in existing user accounts when importing a CSV file in user management |
6.0.35 (LTS), 5.0.75 (LTS), 6.0.37, 5.0.77 |
|
148028 |
WebUI |
An issue where an unnecessary download button is displayed when adding an SAML2 authentication link |
6.0.37 |
|
148028 |
WebUI |
An issue where network objects are not registered when creating network objects with CSV import without a description (DESC) field |
6.0.4 |
|
148028 |
WebUI |
In version 5.0, an alert message was output in duplicate when the agent's installation token was set to ON during the settings in the management console |
5.0.70 |