CVE-2020-29292

Name of the Vulnerable Software and Affected Versions: iBall WRD12EN version 1.0.0

Description: The issue allows cross-site request forgery (CSRF) attacks. This can be demonstrated by enabling DNS settings or modifying the range for IP addresses. CSRF is an attack that tricks the victim into performing unintended actions on a web application that they are authenticated to.

Recommendations: For iBall WRD12EN version 1.0.0, as a temporary workaround, consider disabling the DNS settings modification and IP address range modification features until a patch is available. Restrict access to these features to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.