For your convenience, the release notes list known bugs for this version.
 Note |
This list is auto-generated once and is not subsequently updated. Depending on how and when a bug was categorized or updated in our system, it may not appear in the release notes. You should regard the Cisco Bug Search Tool as the 'source of truth.' |
If you have a support contract, you can use the Cisco Bug Search Tool to obtain an up-to-date list of open bugs for Firepower products. You can constrain searches to bugs affecting specific Firepower platforms and versions. You can also search by bug ID, or for specific keywords.
These general queries display open bugs for Firepower products running Version 6.3.0:
| Bug ID | Headline |
|---|---|
|
After FDM HA switch the deploy takes longer than 25 minutes on 6.3.0-1376 |
|
|
Cisco Firepower Threat Defense Software Multi-Instance Container Escape Vulnerabilities |
|
|
After creating MAX number of LOM users you cannot login remotely using ipmitool |
|
|
Need option to do packet capture on a Port channel Sub-interface |
|
|
Sometimes rule evaluation is aborted on virtual devices due to lower default PPM threshold value |
|
|
Network IPv6 range doesn't deploy correctly to lina |
|
|
4140 Multi-Instance Not Load-Balancing Correctly with 4 Instances |
|
|
MSP -Access Control Rule to Block with Reset for CIP Write application is not blocking |
|
|
Multiple Vulnerabilities in curl |
|
|
Restoring self backup on secondary requires license re-registrations |
|
|
6.3.0-79: HA upgrade/deployment fails from from missing RAVPN diskfiles on secondary |
|
|
Security Intelligence IP monitor Events are not sent to syslog if default action logs to syslog |
|
|
FMC4500 : Noticed failures related to IPv6 configuration and NTP on console during baseline |
|
|
Policy deploy throws "Variable set has invalid execulded values" |
|
|
Govt UCAPL - Maximum Login Sessions through CLI - test case fails on 6.4.0-1088 |
|
|
Device name doesn't exist in a syslog message if syslog alerting for connection events is configured |
|
|
FTD may drop conns through GRE tunnels if firewall receives GRE packet before inner packet |
|
|
Maxfailedlogin for non ucapl user's set to 5 in ucapl mode |
|
|
Return error messages when failing to retrieve objects from database |
|
|
28 Core instance is achieving 20% lower performance than expected |
|
|
Deleting a base policy does not delete the EOs of child policies |
|
|
Adding a validation check in FMC UI to validate the object network configured in static route |
|
|
FMC should check for configuration line length prior to deployment |
|
|
RabbitMQ constantly fails to start with error "case_clause,undefined" |
|
|
RabbitMQ malfunctions and does not recover after SFRemediateD is killed |
|
|
FTD 6.3.0 traceback seen with tftp traffic |
|
|
Slow deployment due to slower IntrusionPolicy step in global snapshot population |
|
|
FP 2100: Reset should be direction aware similar to other platforms |
|
|
Unable to mount SMBv1 share in 6.3.0 |
|
|
FTD-REST-API: HTML returned when wrong version passed in URL |
|
|
Upgrading FMC to 6.3.0 fails with error UNABLE TO LOAD stricts.pm and FlyLoader.pm |
|
|
ASA SFR: preprocessors won't be enabled, if enable dependency rules |
|
|
FMC 6.3 Multitenancy/Domain LDAPS User/Group Download Failure Due to Certificate Location |
|
|
connection event page is not displaying table on UI - max rows user preference is empty |
|
|
Search-Index update fails due to missing Activity Event publish |
|
|
Internet Download Manager detector doesn't match all flows |
|
|
fmc-ha uip snapshot processing stuck in a loop. |
|
|
in FMC-HA user_group_map entries are wiped out in split-brain |
|
|
EventHandler core while pruning metadata cache |
|
|
FDM upgrade fails due to objects validation failure |
|
|
Syslog alerts are not sent to server when Global Rule Thresholding is disabled on Intrusion Policy |
|
|
Not able to upload the STIX or Flat File Manually under Threat Intelligence Director |
|
|
FILE RESUME BLOCK being randomly thrown causing access issues on files from SMB share. |
|
|
InlineResult for IPS event missing metadata "Would have blocked" |
|
|
Cisco Firepower Management Center Multiple Cross-Site Scripting Vulnerabilities |
|
|
Disable asp load-balance per-packet functionality from fp2100 until all bugs fixed |
|
|
FDM - user downloads not working with LDAPS |
|
|
Lodash lodash Object.prototype Denial of Service Vulnerability |
|
|
Bootstrap collapse Plugin Data-Parent Attribute Cross-Site Scripting V |
|
|
Bootstrap tooltip Plugin Data-Container Property Cross-Site Scripting |
|
|
Bootstrap scrollspy Data-Target Property Cross-Site Scripting Vulnerab |
|
|
Access-control-config hit counter not incrementing |
|
|
FMC generates Connection Events from a SYN flood attack |
|
|
Variable set is not validated at deploy if it is not a part of AC rule |
|
|
FMC upgrading to 6.3/6.4 shouldn't remove existing deprecated flexconfig |
|
|
Deployment fails for FDM due to neo4j error |
|
|
Series 3 sensors fail system restore to 6.3 and 6.4 |
|
|
On the 4120 sensor, the task delete is not removing the "task_xx" files from the cron.d directory |
|
|
Unable to break HA in 6.4.0.9-34 FDM |
|
|
Terracotta Quartz Scheduler initDocumentParser XML External Entity Vul |
|
|
Apache Commons Compress ZipArchiveInputStream Denial of Service Vulner |
|
|
Memcached lru Commands NULL Pointer Dereference Vulnerablity |
|
|
GNU Wget set_file_metadata Information Disclosure Vulnerability |
|
|
Query FMC using Ext. DB & unable to extract the 'url_category' from connection_log table as expected |
|
|
FTD Backup and Restore does not restore the hostname of the device locally |
|
|
SNMP IfDiscards OIDs for Internal-Data 0/0 and 0/1 wrong Values |
|
|
FTD/LINA traceback and reload on process name lina |
Feedback