CVE-2015-9256

Datto ALTO and SIRIS devices allow remote attackers to obtain sensitive information via access to device/VM restore mount points, because they do not have ACLs by default. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt