CVE-2014-5504
SolarWinds Log and Event Manager pre-6.0.1 is affected by a HyperSQL authentication flaw due to static/default credentials, enabling a remote, unauthenticated attacker to execute arbitrary code in the database context. Some 6.0.0 instances may be unaffected; remediation is to upgrade to 6.0.1 or ...