I have a 3-node ELK cluster in linux. Carbon Black scan picked up some vulnerable jar files. Should I:
- Upgrade Elasticsearch to 7.16 or later ?
- Remove the vulnerable JAR files ?
- Upgrade LOG4J components bundled in Elastic ad-hoc (to LOG4J2?)
I have a 3-node ELK cluster in linux. Carbon Black scan picked up some vulnerable jar files. Should I:
Elasticsearch 7.4 is EOL and no longer supported. Please upgrade ASAP.
(This is an automated response from your friendly Elastic bot. Please report this post if you have any suggestions or concerns )
Please Refer to the Official Thread on this.
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.