CVE-2021-20795

Name of the Vulnerable Software and Affected Versions: Cybozu Remote Service versions 3.1.8 through 3.1.9

Description: A cross-site request forgery (CSRF) issue exists in the management screen, allowing a remote attacker to hijack the authentication of administrators. This could lead to unintended operations being performed.

Recommendations: For Cybozu Remote Service versions 3.1.8 through 3.1.9, consider implementing additional security measures to prevent CSRF attacks, such as validating request tokens or restricting access to the management screen until a patch is available.