Hey Friends,
We're contacting you to tell you that there is a security vulnerability in SQL Monitor and we're advising customers to upgrade to the latest version as soon as possible.
We will be contacting customers shortly with this information, but we wanted to ensure Friends of Redgate were updated first. While this will be made public shortly, we’re not looking for help actively communicating this information. Please don’t mention this publicly until we’ve communicated it to customers later today.
There is no evidence of this vulnerability being exploited in the wild, or of any data having been lost, and this is not a data breach.
The vulnerability only affects users who are tricked into visiting a malicious link or website. They can then be made to reveal sensitive information or perform certain actions normally made in SQL Monitor’s UI.
The latest version of SQL Monitor patches this vulnerability. If you are using SQL Monitor as part of your Friends of Redgate allowance, or in your organization, we strongly recommend you perform this update at your earliest convenience.
For more details, including instructions for updating to the patched version, please visit our website.
We sincerely apologize for any inconvenience caused by this. If you have any questions, please post below and I will ensure that they get passed onto the Monitor team.
Thanks,
Roseanna
Hey Friends,
We're contacting you to tell you that there is a security vulnerability in SQL Monitor and we're advising customers to upgrade to the latest version as soon as possible.
We will be contacting customers shortly with this information, but we wanted to ensure Friends of Redgate were updated first. While this will be made public shortly, we’re not looking for help actively communicating this information. Please don’t mention this publicly until we’ve communicated it to customers later today.
There is no evidence of this vulnerability being exploited in the wild, or of any data having been lost, and this is not a data breach.
The vulnerability only affects users who are tricked into visiting a malicious link or website. They can then be made to reveal sensitive information or perform certain actions normally made in SQL Monitor’s UI.
The latest version of SQL Monitor patches this vulnerability. If you are using SQL Monitor as part of your Friends of Redgate allowance, or in your organization, we strongly recommend you perform this update at your earliest convenience.
For more details, including instructions for updating to the patched version, please visit our website.
We sincerely apologize for any inconvenience caused by this. If you have any questions, please post below and I will ensure that they get passed onto the Monitor team.
Thanks,
Roseanna