Is OpenSearch 1.3.20 patched?
Current stable (3.7.0): 100/100
1.3.20 has 2 open critical-or-high vulnerabilities. Run 3.3.0 or later to clear them. See what 3.3.0 fixes →
Summary iPlain-English security status for OpenSearch 1.3.20, built from its CVEs, active-exploitation data, end-of-life date and latest release.
OpenSearch 1.3.20 is part of the 1.3 release line. 2 known vulnerabilities affect it. The minimum safe version is 3.3.0 — upgrade to it or later to clear the open critical/high issues. The latest supported OpenSearch release is 3.7.0.
Known issues affecting 1.3.20
Exploited first, then by exploitation probability.
CVE-2022-31115 HIGH EPSS 1% → fixed in 2.0.2 CVE-2025-9624 HIGH EPSS 0% → fixed in 3.3.0Other OpenSearch versions
Check another release line of OpenSearch.
Frequently asked
Is OpenSearch 1.3.20 patched?
OpenSearch 1.3.20 has 2 open critical-or-high vulnerabilities. The minimum safe version is 3.3.0 — upgrade to 3.3.0 or later to clear them.
What version should I upgrade OpenSearch 1.3.20 to?
Upgrade OpenSearch 1.3.20 to at least 3.3.0 to clear its 2 open critical-or-high vulnerabilities.
What is the latest version of OpenSearch?
The latest supported OpenSearch release is 3.7.0.
Is OpenSearch 1.3.20 still receiving security updates?
Yes — the 1.3 line is still supported and receiving security updates. The latest release is 3.7.0.
Informational only, from public data (NVD · CISA KEV · EPSS · endoflife.date), and can lag or miss vendor-specific fixes. Always confirm against Amazon's official advisory before you patch or upgrade — OpenSearch official site ↗