Blake Rouse

**Name of the Vulnerable Software and Affected Versions** Ubuntu MAAS versions prior to 1.9.2 **Description** A vulnerability in the `maasserver.api.get file by name` function of Ubuntu MAAS allows unauthenticated network clients to download any file. **Recommendations** For versions prior to 1.9.2, update to version 1.9.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the `maasserver.api.get file by name` function to prevent unauthorized file downloads.