Cisco Cisco Firepower Management Center 2000 Notas de publicación

Firepower System Release Notes

Resolved Issues

 

CVE-2012-5134, CVE-2013-0242, CVE-2013-1914, CVE-2013-4332, CVE-2013-4458, CVE-2014-3512, 
CVE-2014-3571, CVE-2014-3660, CVE-2014-6040, CVE-2014-8502, CVE-2015-0206, CVE-2015-0286, 
CVE-2015-0288, CVE-2015-0293, CVE-2015-1473, CVE-2015-1781, CVE-2015-1819.



Security Issue 

Addressed multiple arbitrary script injection vulnerabilities allowing unauthenticated, remote attackers 

to exploit or overwrite functionality as described in CVE-2008-3075, CVE-2008-4101, CVE-2010-2252, 
CVE-2010-4494, CVE-2010-4651, CVE-2011-2716, CVE-2011-3102, CVE-2014-047, CVE-2014-4877, 
CVE-2014-5119, CVE-2014-7817, CVE-2015-1472, CVE-2015-6307.



Security Issue 

Addressed multiple vulnerabilities in HTTP connection handling that allowed users to be redirected to 

malicious websites as described in CVE-2012-1033 and CVE-2015-0706.



Security Issue 

Addressed multiple vulnerabilities that allowed unauthenticated, remote attacker to disclose sensitive 

information on an affected system, including those described in CVE-2011-1098 and CVE-2015-3153.



Security Issue 

Addressed multiple vulnerabilities in SSLv3 that allowed external attacks on client connections, as 

described in CVE-2014-3556.



Security Issue 

Addressed multiple parameter manipulation and misconfiguration vulnerabilities, including those 

described in CVE-2009-0025, CVE-2009-4022, and CVE-2015-0773.



Security Issue 

Resolved multiple vulnerabilities where managed devices experienced microengine failure when 

processing traffic, including those described in CVE-2015-6307.



Resolved an issue where, if the device did not process sufficient traffic, the system failed to generate complete 
performance graphs. (108348/CSCze87001)



Resolved an issue where the intrusion performance graph incorrectly reported the minimum packets received instead 
of the actual number of packets received. (124331/CSCze87003)



Resolved an issue where deploying a policy with a policy identification number greater than 

4096

 failed. 

(134385/CSCze89030)



Resolved an issue which could have artificially limited the number of active dynamic NAT translations. 
(134561/CSCze87078)



Resolved an issue where, in some cases, the front panel LCD informational screen of Firepower 7000 Series and 
8000 Series devices incorrectly displayed some software errors as hardware errors. (140386/CSCze91939)



Resolved an issue where the system did not display the number of failed login attempts. (140400/CSCze87152)



Improved data pruning. (141894/ CSCze92576)



Improved link state propagation responsiveness for Firepower 7000 Series and 8000 Series devices 
(143860/CSCze87386)



Resolved an issue where, if you disabled an access control rule using an intrusion policy or variable set not used in 
any other rule and attempted to deploy the policy, deployment failed. (143872/CSCze87308)



Improved URL filtering. (144198/CSCze94590, 144199/CSCze94758, 144685/CSCze94805)



Resolved an issue where, if updating failed and you attempted to update again, some drives did not mount correctly 
during install. (144553/CSCze95696)



Improved reporting. (145102/CSCze95656)



Resolved an issue where the Discovery Statistics page did not include any events in the following rows of the 
statistics summary: 

, 

, or 

. (145153/CSCze95751)



Improved troubleshooting for Firepower 7000 Series and 8000 Series devices. (145187/CSCze95510)



Resolved an issue where removing the URL Filtering license from your system caused a disruption in cloud 
connectivity. (144578/CSCze95183)



Corrected the calculation used by the memory usage health monitor to prevent false alerts. (144593/CSCze94840)