Can anyone please confirm whether Elasticsearch and Logstash versions below 5 are also impacted with Log4j vulnerability threat ?

Log4j vulnerability threat impact on Elasticsearch and Logstash versions below 5

warkolm (Mark Walkom) December 19, 2021, 11:12pm 2

Those versions are EOL and unsupported, please upgrade as a matter of urgency.

Topic		Replies	Views
Does Log4j vulnerability (CVE-2021-44228) is impacted for ES v7.5.2? Elasticsearch	2	1269	January 17, 2022
Addressing log4j vulnerability for 1.x and 2.x elasticsearch Elasticsearch	2	1529	January 18, 2022
How do I Mitigate LOG4J CVE on Elasticsearch 7.4.0? Elasticsearch	3	613	January 4, 2023
Is Elasticsearch affected by CVE-2021-45046 - a second vulnerability in log4j? Elasticsearch	2	5953	January 12, 2022
Log4j CVE-2021-44832 (released 28th dec) - is ES vulnerable? Elasticsearch	10	6644	February 7, 2022