Thank you for your inquiry regarding Redgate products impact by the recent
CVE-2021-44228 ‘Log4Shell’ vulnerability.
Thankfully our external Redgate products are not impacted by this vulnerability
as they are built upon .NET and are not susceptible. Our Flyway product does
utilise Java and our development teams have ensured that it doesn’t ship using
log4j / log4shell.
A small number of our internal systems which had used the vulnerable version
were thoroughly checked for any evidence of exploitation before being patched
Redgate takes the security and privacy of its clients seriously and if you have
further questions we will happily follow them through with our security team.
Tips and how-to guides for Redgate products
Ask, discuss, and solve questions about Redgate's tools
Meet us at an event, get sponsored, and join our Friends of Redgate
In-depth articles and opinion from Redgate's technical journal