CVE-2017-7282

Name of the Vulnerable Software and Affected Versions Unitrends Enterprise Backup versions prior to 9.1.1

Description An issue allows an authenticated attacker to read any file in the filesystem that the web server has access to. This is achieved through the "downloadFile" function in "api/includes/restore.php" which blindly accepts any filename passed to the "/api/restore/download" API endpoint as valid.

Recommendations For versions prior to 9.1.1, update to version 9.1.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the "/api/restore/download" API endpoint to minimize the risk of exploitation.