diff --git a/CHANGELOG.md b/CHANGELOG.md
index d463d4a370d72..bf7e76a231742 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -20,6 +20,7 @@ Inspired from [Keep a Changelog](https://keepachangelog.com/en/1.0.0/)
 - Do not fail replica shard due to primary closure ([#4133](https://github.com/opensearch-project/OpenSearch/pull/4133))
 
 ### Security
+- CVE-2022-25857 org.yaml:snakeyaml DOS vulnerability ([#4341](https://github.com/opensearch-project/OpenSearch/pull/4341))
 
 ## [2.x]
 ### Added
diff --git a/buildSrc/version.properties b/buildSrc/version.properties
index 61b054c4c2366..7c701828c79ca 100644
--- a/buildSrc/version.properties
+++ b/buildSrc/version.properties
@@ -11,7 +11,7 @@ spatial4j         = 0.7
 jts               = 1.15.0
 jackson           = 2.13.3
 jackson_databind  = 2.13.3
-snakeyaml         = 1.26
+snakeyaml         = 1.31
 icu4j             = 70.1
 supercsv          = 2.4.0
 log4j             = 2.17.1
diff --git a/libs/x-content/licenses/snakeyaml-1.26.jar.sha1 b/libs/x-content/licenses/snakeyaml-1.26.jar.sha1
deleted file mode 100644
index fde3aba8edad0..0000000000000
--- a/libs/x-content/licenses/snakeyaml-1.26.jar.sha1
+++ /dev/null
@@ -1 +0,0 @@
-a78a8747147d2c5807683e76ec2b633e95c14fe9
\ No newline at end of file
diff --git a/libs/x-content/licenses/snakeyaml-1.31.jar.sha1 b/libs/x-content/licenses/snakeyaml-1.31.jar.sha1
new file mode 100644
index 0000000000000..1ac9b78b88687
--- /dev/null
+++ b/libs/x-content/licenses/snakeyaml-1.31.jar.sha1
@@ -0,0 +1 @@
+cf26b7b05fef01e7bec00cb88ab4feeeba743e12
\ No newline at end of file