Currently we have installed and using version 8.6.2 for Elasticsearch, Logstash and Kibana. But due to below mentioned vulnerabilities we want to upgrade Kibana to version 8.11.1
• Arbitrary Code Injection CVE-2023-31414
• Information Exposure Through Log Files CVE-2023-46671
• Insertion of Sensitive Information into Log File CVE-2023-46675
• Cross-site Scripting (XSS) CVE-2020-7015
So, can we only upgrade Kibana to version 8.11.1 and continue using version 8.6.2 for Elasticsearch and Logstash ?
Thank you Leandro for confirming.
Before we upgrade Kibana, do we need to take back of Logstash Pipelines, Index Management, Index Life Cycle Policies Roles, Spaces etc which are under Stack Management ?
If yes, can you please let us know as to how we can take backup and restore it after upgrade.
Note : We would be downloading compressed tarball for upgradation.
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.