Elasticseach JDK and sql-cli vulnerability mitigation


I'm using Elastic Version - 7.6.0, as per the vulnerability scan below 2 are impacted.

  1. Elasticsearch-sql-cli-7.6.0.jar
  2. Elasticsearch-7.6.0/jdk -

Is there a way to just upgrade only these 2 libs as a quick fix, not the whole elastic version coz it will take some time?

Please email security@elastic.co per Security issues | Elastic.

Also 7.6 is EOL, you need to upgrade.

Is this possible to upgrade only JDK and remove sql-cli lib?

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.