Cisco Bug: CSCvv53664 - ENH: FMC should send CVE-ID or summary in the estreamer events (intrusion events) to SIEM
Sep 11, 2020
- Sourcefire Defense Center
Known Affected Releases
Symptom: CVE-ID and summary fields not present in intrusion events estreamer data sent from FMC to SIEM. These fields can be seen on FMC when viewing details of a intrusion event that occurred on the FTD. Conditions: Enabled estreamer on FMC to send intrusion events to SIEM.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases