Cybozu · Cybozu Garoon · CVE-2016-4909
**Name of the Vulnerable Software and Affected Versions**
Cybozu Garoon versions 3.0.0 through 4.2.2
**Description**
A cross-site request forgery (CSRF) issue allows remote attackers to hijack the authentication of a logged-in user, forcing a logout via unspecified vectors.
**Recommendations**
For Cybozu Garoon versions 3.0.0 through 4.2.2, update to a version that contains a fix for this issue to prevent CSRF attacks.