List of Upcoming Resolved Issues in R82 Jumbo Hotfix Accumulator

The below issues are planned to be addressed in our future Jumbo Hotfix Accumulator Takes.

The list is not final and may change.

ID	Product	Description
PRJ-59091, PRHF-37685	Security Management	Administrators with LSM write permissions cannot delete LSM Gateway objects without also having write permissions for Others/Common Objects.
PRJ-62532, PRHF-40750	Security Management	Import of a large policy package fails with validation and API errors on the Multi-Domain Security Management Server. Refer to sk183697.
PRJ-64885, PRHF-42660	Security Management	In rare scenarios, login using Management API fails with a timeout and the "api status" command returns "API readiness test failed" message. Refer to sk184342.
PRJ-60489, PRHF-39032	Security Management	In some scenarios, when Configuration Sharing is enabled, audit logs may show failed login attempts to the CPM Server after publishing changes.
PRJ-61809, PRHF-40205	Security Management	When a user with read-only permissions for Global Domains (for example, a user with the Global Manager profile) connects to the System Domain in SmartConsole, the SmartConsole status bar incorrectly displays the user as having read-write permissions.
PRJ-59516, PRHF-37612	Security Management	In rare scenarios, after an IPS update, all protections are set to Staging mode in Threat Profiles configured with "Set activation as Staging mode".
PRJ-61328, PRHF-39881	Security Management	In rare scenarios, IPS update fails because of duplicate objects.
PRJ-59751, PRHF-38490	Security Management	In some scenarios, creating a Standby Domain Security Management Server fails with "You do not have the permissions to complete this action".
PRJ-62555, PRHF-40800	Security Management	In SmartConsole, if the Task pane has no tasks to show, the Task pane incorrectly shows an "Error retrieving results" message.
PRJ-62551, PMTR-117467	Security Management	In rare scenarios, the Security Management Server fails to start after performing a "Revert to Revision" operation.
PRJ-60527, PRHF-38743	Security Management	When running the "mgmt_cli -r true gaia-api/set-ntp target pocsms enabled true --format json" Management API command, the output is not the same as running it directly from Gaia API.
PRJ-62195, PMTR-116551	Security Management	When using the "set-threat-protection" Management API command, overriding either the packet-capture or track values also overrides the action field and sets it to "inactive".
PRJ-63793, PRHF-41803	Multi-Domain Security Management	On Multi-Domain Security Management Servers, custom Compliance Blade Best Practices may differ between the Multi-Domain Security Management level and the Domain level.
PRJ-56359, PRHF-34777	CPView	CPView may display incorrect concurrent connection statistics (negative values) because of improper aggregation of connection data during a Cluster failover.
PRJ-55405, PRHF-34152	Logging	In rare scenarios, the description of IPS Logs in the Logs view may be unclear. Refer to sk182386.
PRJ-62132, PRHF-40631	Security Gateway	The FWK memory leak may occur during FTP connections with high file volume. Refer to sk183662.
PRJ-64397, PMTR-120304	Security Gateway	When changing the CoreXL configuration (for example, adjusting the number of SND and FW instances), a network interface may unexpectedly go down. This can cause traffic disruption.
PRJ-59735, PMTR-110282	Security Gateway	In some scenarios, when SecureXL is working in User Mode (UPPAK) mode, QoS service is unable to start, displaying the "QoS is not responding. Verify that QoS is installed on the gateway" error. Refer to sk183752.
PRJ-62920, PMTR-117427	Security Gateway	Infinite routing loop may occur because of TTL handling in SecureXL Medium Path. Refer to sk183728.
PRJ-63942, PRHF-41674	Security Gateway	In a Quantum Maestro VSX environment, Layer 2 MAC address table in Bridge Mode (Bridge Forwarding Database) entries may be incorrectly deleted, causing connectivity issues.
PRJ-57811, TEMTA-1237	Threat Prevention	In some scenarios, Mail Transfer Agent (MTA) file type classification may be inaccurate when both MTA and Threat Emulation are enabled.
PRJ-62837, PRHF-39978	Mobile Access	Mobile Access Software Blade may incorrectly terminate Guacamole-based clientless RDP/SSH sessions due to client idleness.
PRJ-60482, PMTR-110991	Mobile Access	Mobile Access SSL Network Extender (SNX) remote users with Windows 11 24H2 fail to connect. Refer to sk182923.
PRJ-62831, PRHF-41229	Mobile Access	In rare scenarios, Mobile Access SmartConsole Logs may not match views/queries, including the "MAC address" or "Methods" field names.
PRJ-58680, PMTR-110608	SecureXL	Concurrent NAT64 and NAT46 operations may cause packet processing threads to become unresponsive because of improper issue handling in the SIM v6 kernel module.
PRJ-64334, PMTR-120460	SecureXL	Potential USIM process exit when using virtio devices and changing the MTU value.
PRJ-64457, PMTR-120707	SecureXL	Traffic may be disrupted when reconfiguring the virtual hardware interfaces.
PRJ-61312, PMTR-115500	SecureXL	In some scenarios, the VSX Security Gateway may not route traffic correctly for non-accelerated connections and accelerated connections that require Active or Passive Streaming when SecureXL User Mode (UPPAK) is enabled.
PRJ-61616, PMTR-116026	SecureXL	The USIM process may exit when multiple routes are using the same nexthop and the nexthop is not yet resolved
PRJ-62960, PMTR-117546	SecureXL	The USIM process may exit when viewing the fg_conn table using the "fwaccel tab -t" command.
PRJ-57694, PMTR-109360	SecureXL	Multiple "radix_get_value" messages may appear in fwk.elg log files.
PRJ-64881, PRHF-42050	SecureXL	When a VLAN interface is configured as the synchronization interface for the VSX cluster and SecureXL User Mode (UPPAK) is enabled, Virtual Systems on non-active members cannot forward traffic to Virtual Systems on the active member through a warp interface.
PRJ-64613, PMTR-121137	SecureXL	Multiple threads may be performing a routing next hop lookup for the same next hop at the same time, causing a rare race condition and USIM-related processes to exit.
PRJ-61827, PRHF-40390	SecureXL	Interface cards are not displayed in the output of the "show asset network" command when SecureXL User Mode (UPPAK) and MDPS are enabled. Refer to sk184218.
PRJ-64143, PMTR-120092	SecureXL	In a Maestro setup, the USIM process may exit under high load when handling encrypted VPN traffic with the other Security Gateway.
PRJ-61623, PMTR-116027	SecureXL	Rate Limiting policy installation (when the Rate Limiting policy is updated or country code data is updated) may take a long time.
PRJ-59396, AAD-4359	VPN	VPN traffic outage may occur in ClusterXL environments after a Cluster failover.
PRJ-63020, PRHF-40410	VSX	Services fail after Virtual System failover in Maestro dual-site environment using the Same Virtual MAC feature. Refer to sk183956 and sk184194.
PRJ-62535, PRHF-40972	Gaia OS	Gaia Portal Session Cookie missing the SameSite attribute. Security scanners and penetration tests flag the missing SameSite attribute as a vulnerability. Refer to sk183645.
PRJ-63262, PRHF-29936	Gaia OS	The LLDP Clish "lldpneighbors" command may have a corrupted output in case of extensive data. Refer to sk182065.
PRJ-60766, PRHF-39354	Gaia OS	DHCP traffic peaks may cause high utilization which may impact connectivity.
PRJ-62041, PRHF-40558	Gaia OS	The MONITORD process unexpectedly exits on Security Gateways. Refer to sk184076.
PRJ-62466, PRHF-40902	Gaia OS	SNMP Power Supply trap reports false "Down" status. Refer to sk183702.
PRJ-59519, PMTR-111921	SD-WAN	A Virtual System may lose connectivity on the Backup and the Standby member when route-based traffic is configured with specific SD-WAN configurations in VSX environments.
PRJ-63462, EPS-60858	Harmony Endpoint	Full Disk Encryption user update password fails with auth_type 3 (certificate and password).
PRJ-61893, PRHF-39789	Harmony Endpoint	Posture Management scans initiated manually or automatically remain stuck at the "Scan initialize" status. This issue affects all devices with Endpoint Security installed.
PRJ-63038, EPS-60640	Harmony Endpoint	After upgrading the Endpoint Security Client from a non-compliant version to E88.62 on Azure AD devices (protected by Full Disk Encryption), multiple clients may enter a disconnected state.
PRJ-61896, PRHF-39851	Harmony Endpoint	Security Management Server and Policy Server may lose connectivity after uploading production licenses. Running "cplic print -x" on the Policy Server shows no output, while the Security Management Server output is uploaded for review.
PRJ-64062, PRJ-62567	Scalable Platforms	When FastForward feature is enabled, policy installation may fail with "Maestro acceleration (MXL) failed, reason: General error. Please check /var/log/acl_cli.log on the security group SMO for more details" instead of indicating that it is a policy parser issue.
PRJ-56452, PRHF-31961	Carrier Security	SAM rules fail to gracefully terminate PDP context when the timer expires.
PRJ-64504, CST-399	Carrier Security	Policy installation fails with an internal error when the Security Gateway policy includes rules that match a specific Access Point Name (APN) for GTPv0 or GTPv1 traffic.
PRJ-64593, PMTR-121110	Scalable Platforms	In rare scenarios, in a Maestro setup, traffic interruption may occur after Security Gateway reboots when the Gaia Database is corrupted.
PRJ-62818, PRHF-41165	Scalable Platforms	In Maestro VSX VSLS Cluster, after setting the kernel parameters "fwha_monitor_all_vlan=1" and "fwha_enable_if_probing=1", memory consumption may immediately increase to 100% and cause an outage.
PRJ-63476, PMTR-119026	Scalable Platforms	Installing policy to the Maestro Security Group under extreme load with Resource Separation may fail.
PRJ-64632, PRHF-41710	Scalable Platforms	The "Invalid property name for chassis" error is displayed when changing the "alert_threshold packet_rate_total_threshold_low_ratio" value.
PRJ-56448, PRHF-31901	Carrier Security	Running to "snmpwalk" or "stattest" command for any of GX OIDs results in the "No Such Instance currently exists at this OID" error.