I found some vulnerabilities in the java jdk 22.0.1 version included in my version of ELK 8.15.3, I want to know how to correctly upgrade the version of java jdk included in ELK, or alternatively, know if these vulnerabilities are not exploitable Where can I find confirmation of that?
Welcome!
Thank you for your report.
Elastic's security reporting guidelines are available at Security issues | Elastic.
Per those guidelines, all reports of potential security issues or vulnerabilities should be sent via email to security@elastic.co.
We are unable to discuss potential issues of this nature here. Please send your report to the email address above, where it can be appropriately handled.