Query regarding Vulnerability in Apache Log4j Library Affecting Cisco Products: December 2021

As per the above critical advisory, I was looking at new Intrusion rule in the older FMC  that we have (running version 6.1.0.5) and noticed that download of the new rules have been failing due to certificate issue. 

“Download updates failed: Peer certificate cannot be authenticated with known CA certificates”

Is it possible to download the specific new rules manually, if so how?

If this is not possible, I’ve found that upgrading the FMC to 6.2.0 fixes the certificate issue affecting download from FMC.

In order to upgrade from 6.1.0.5 to 6.2.0, can I double check that:

• Direct upgrade from 6.1.0.5 to 6.2.0 is supported?
• Managed ASA5555 FirePOWER module is ver 6.0.1.4 and this is compatible with FMC ver 6.2.0?

We are looking to replace this ASA to FPR2140 which is managed on the newer build FMC so want to spend as little time and effort as possible. 

Please advise.

Many thanks,