Bhaskar Borman

**Name of the Vulnerable Software and Affected Versions** Huawei SmartCare version V200R003C10 **Description** The issue is related to a stored XSS (cross-site scripting) vulnerability in the dashboard module. A remote authenticated attacker could exploit this to inject malicious scripts in the affected device. **Recommendations** For version V200R003C10, update to a version that includes a fix for this issue, as no specific workaround is provided for this version.

**Name of the Vulnerable Software and Affected Versions** Huawei SmartCare version V200R003C10 **Description** The issue allows a remote authenticated attacker to inject malicious CSV expressions into the affected device. **Recommendations** For version V200R003C10, at the moment, there is no information about a newer version that contains a fix for this vulnerability.