Elasticseach JDK and sql-cli vulnerability mitigation

Hi,

I'm using Elastic Version - 7.6.0, as per the vulnerability scan below 2 are impacted.

  1. Elasticsearch-sql-cli-7.6.0.jar
  2. Elasticsearch-7.6.0/jdk - 1.13.0.2.8

Is there a way to just upgrade only these 2 libs as a quick fix, not the whole elastic version coz it will take some time?

Please email security@elastic.co per Security issues | Elastic.

Also 7.6 is EOL, you need to upgrade.

Is this possible to upgrade only JDK and remove sql-cli lib?