Synced 17 Jun 2026 22:27 UTC Account
← All products

Elasticsearch

Elastic · Database
↻ RSS feed
Monitors Elasticsearch and tailors your dashboard to that exact version.
9.4.2 · latest cycle/100 Unknown

Summary iPlain-English security verdict for Elasticsearch, generated from its current health score, actively-exploited vulnerabilities, and latest supported version.

Elasticsearch's security status could not be assessed at the last sync — vulnerability data was unavailable.

Disclosure trend iNew CVEs published for Elasticsearch each year (NVD). A higher bar means more disclosures that year — more scrutiny, not necessarily less safe.

'19
'20
'21
'22
'23
'24
'25
'26

Patch priority — what to act on iThe issues to fix first — actively exploited (CISA KEV) first, then by exploitation probability (EPSS), then severity. Each row's "→ fixed in" is the earliest version that patches it; "see advisory" means no fixed version is published.

No urgent unpatched issues identified. ✓

Get alerted about Elasticsearch

Be emailed the moment Elasticsearch gets a newly exploited vulnerability (CISA KEV) or a release reaches end of life. Free · double opt-in · unsubscribe anytime.

We email only on real events for Elasticsearch — no marketing, no sharing, and we never know what you run. Track your whole stack →

Monitor up to 200 products — freeHit ☆ Monitor on anything you run, then sign in (no password) to sync your stack across devices and unlock smart insights, risk history & CSV/JSON exports. Sign in free →

Versions & lifecycle iWhen each release line stops receiving security patches (end-of-life). After EOL there are no more fixes — plan upgrades before these dates.

How long each Elasticsearch release line is supported — and when it sunsets. Select a line for its full report.

Jul15'27 Elasticsearch 8.19EOL 2027-07-15
May26'26 Elasticsearch 9.3ended 2026-05-26
May5'26 Elasticsearch 9.2ended 2026-05-05
Feb3'26 Elasticsearch 9.1ended 2026-02-03
Jan15'26 Elasticsearch 7ended 2026-01-15
Oct21'25 Elasticsearch 8.18ended 2025-10-21
Oct2'25 Elasticsearch 9.0ended 2025-10-02
Aug5'25 Elasticsearch 8.17ended 2025-08-05
Apr15'25 Elasticsearch 8.16ended 2025-04-15
Feb10'22 Elasticsearch 6ended 2022-02-10

Full Elasticsearch end-of-life dates & support timeline →

9.4 latest 9.4.2 Supported 9.4.2 → 9.3 latest 9.3.5 End of life ended 2026-05-269.3.5 → 9.2 latest 9.2.8 End of life ended 2026-05-059.2.8 → 9.1 latest 9.1.10 End of life ended 2026-02-039.1.10 → 8.19 latest 8.19.16 Supported until 2027-07-158.19.16 → 8.18 latest 8.18.8 End of life ended 2025-10-218.18.8 → 9.0 latest 9.0.8 End of life ended 2025-10-029.0.8 → 8.17 latest 8.17.10 End of life ended 2025-08-058.17.10 → 8.16 latest 8.16.6 End of life ended 2025-04-158.16.6 → 7 latest 7.17.29 End of life ended 2026-01-157.17.29 → See all upcoming end-of-life dates →

Frequently asked

Is Elasticsearch safe and patched?

Elasticsearch's security status could not be assessed at the last sync — vulnerability data was unavailable.

What should I do about Elasticsearch now?

Upgrade Elasticsearch to the latest supported release (9.4.2) or later and apply available security updates, then confirm against Elastic's official advisory.

When does Elasticsearch reach end-of-life?

The latest supported Elasticsearch release is 9.4.2. After end-of-life a release no longer receives security patches.

Which versions of Elasticsearch are still receiving security updates?

Supported Elasticsearch release lines (latest 9.4.2): 9.4, 8.19. End-of-life releases no longer receive security patches.

Informational only, from public data (NVD · CISA KEV · EPSS · endoflife.date), and can lag or miss vendor-specific fixes. Always confirm against Elastic's official advisory before you patch or upgrade — Elasticsearch official site ↗