Is SQL Monitor product impacted by the recently discovered log4j vulnerability
agurvits
Posts: 1 New member
Hello. Does anybody know whether the SQL Monitor product impacted by the recently discovered log4j vulnerability?
Tagged:
Answers
TL;DR - No, SQL Monitor is not impacted by the the CVE-2021-44228 ‘Log4Shell’ vulnerability.
Longer:
Kind regards
Alex
Have you visited our Help Center?
How about SQL Compare and SQL Data Compare?
Thanks,
Daryoosh
Apologies for not being clearer - none of our tools are affected by this - (that was this bit above "Our external Redgate products <...> are not impacted").
Our Flyway product does not ship with log4j, but could have used affected versions of this if the customer had it on their machine. The team have made a change to ensure it now requires unaffected versions of log4j and so will no longer use the affected versions of log4j - see https://flywaydb.org/blog/flyway-log4j-vulnerability for more information on that.
Kind regards,
Alex
Have you visited our Help Center?