CVE-2020-6927
CVE-2020-6927 is a local privilege escalation in HP Device Manager 5.0.0–5.0.3, caused by a bundled PostgreSQL database with a default, weakly protected dm_postgres account (password: single space). This allows a local attacker to connect to the database, run SQL queries, and achieve SYSTEM-level...