Cisco Cisco Firepower Management Center 2000 發佈版本通知
21
FireSIGHT System Release Notes
Version 5.3.1.4
Known Issues
•
Resolved an issue where the system did not prevent you from creating a network variable with an
excluded network value that excluded all (any) networks. (139510/CSCze91770)
excluded network value that excluded all (any) networks. (139510/CSCze91770)
Known Issues
The following known issues are reported in Version 5.3.1.4:
•
In some cases, if your Defense Center has a file list with
SHA-256
file entries and you add a Defense
Center in high availability configuration, the secondary Defense Center in the high availability
configuration deletes the existing file list data. (CSCur57708)
configuration deletes the existing file list data. (CSCur57708)
•
In some cases, if you create a new report template with a static time window, the system may not
correctly save the time. (CSCur61984)
correctly save the time. (CSCur61984)
•
In some cases, if you store details in the Clipboard page and create an incident and
Add all to incident
,
generate a report from the new incident, then attempt to create a new incident, you are able to add
previous clipboard contents to the new incident even though the
previous clipboard contents to the new incident even though the
Events in your clipboard
section of the
Incidents page (
Analysis
>
Intrusion
>
Incidents
) is empty. (CSCus67128)
•
In some cases, If your system includes an SSL Visibility Appliance (SSLVA) or a Cisco SSL
appliance and you create a file policy containing a Web Application category condition and a Block
Malware rule, your first attempt to download a file identified as malware over HTTPS may fail. As
a workaround, disable the file policy. (CSCus72505)
appliance and you create a file policy containing a Web Application category condition and a Block
Malware rule, your first attempt to download a file identified as malware over HTTPS may fail. As
a workaround, disable the file policy. (CSCus72505)
•
In some cases, if you create an user role, the system may not enable some checkboxes but the options
available under the disabled checkboxes are enabled. (CSCus87248)
available under the disabled checkboxes are enabled. (CSCus87248)
•
In some cases, if the Defense Center experiences a large amount of data, restoring a backup may
fail. (CSCus91552)
fail. (CSCus91552)
•
If you edit an access control rule with multiple category conditions and attempt to remove one of
the conditions, the web management interface only removes the first category condition listed
regardless of the condition selected. (CSCut25082)
the conditions, the web management interface only removes the first category condition listed
regardless of the condition selected. (CSCut25082)
•
In some cases, if your Defense Center's database experiences system issues, you may be missing
your access control policy or your access control policy may be missing rules. If you experience
missing rules in your access control policy, contact support. (CSCut30047)
your access control policy or your access control policy may be missing rules. If you experience
missing rules in your access control policy, contact support. (CSCut30047)
•
In some cases, if the system attempts to query an unknown URL, the Cloud Lookup Health Module
generates false positive alerts. (CSCut77594)
generates false positive alerts. (CSCut77594)
•
Because of an invalid symbolic link, the
/var/home
directory on a Defense Center appears to be
empty. (CSCut80381)
•
In some cases, if you restart your ASA5585X device with a large number of interfaces configured
without also restarting the SFR5585X service card, the SFR5585X service card appears to fail.
(CSCut89619)
without also restarting the SFR5585X service card, the SFR5585X service card appears to fail.
(CSCut89619)
•
If you edit an access control rule with multiple category conditions and attempt to remove one of
the conditions, the web management interface only removes the first category condition listed
regardless of the condition selected. (CSCuu00585)
the conditions, the web management interface only removes the first category condition listed
regardless of the condition selected. (CSCuu00585)
•
In some cases, if you copy the Top Intrusion Events table from a recently created FireSIGHT Report,
the Fields row of the generated table does not include data. As a workaround, manually populate
data for the Fields row of the copied table. (CSCuu01020)
the Fields row of the generated table does not include data. As a workaround, manually populate
data for the Fields row of the copied table. (CSCuu01020)
•
In some cases, the system experiences issues and the cloud continuously checks for an updated
download. (CSCuu04844)
download. (CSCuu04844)