cve/2019/CVE-2019-3595.md

### [CVE-2019-3595](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3595)
![](https://img.shields.io/static/v1?label=Product&message=DLP%20Endpoint%20ePO%20extension&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=11.x%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-78%20OS%20Command%20Injection&color=brightgreen)

### Description

Improper Neutralization of Special Elements used in a Command ('Command Injection') in ePO extension in McAfee Data Loss Prevention (DLP) 11.x prior to 11.3.0 allows Authenticated Adminstrator to execute arbitrary code with their local machine privileges via a specially crafted DLP policy, which is exported and opened on the their machine. In our checks, the user must explicitly allow the code to execute.

### POC

#### Reference
- https://kc.mcafee.com/corporate/index?page=content&id=SB10289

#### Github
No PoCs found on GitHub currently.
Update CVE list 2025-09-29 21:09 2025-09-29 21:09:30 +02:00			`### [CVE-2019-3595](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3595)`
			`![](https://img.shields.io/static/v1?label=Product&message=DLP%20Endpoint%20ePO%20extension&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=11.x%20&color=brightgreen)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-78%20OS%20Command%20Injection&color=brightgreen)`

			`### Description`

			`Improper Neutralization of Special Elements used in a Command ('Command Injection') in ePO extension in McAfee Data Loss Prevention (DLP) 11.x prior to 11.3.0 allows Authenticated Adminstrator to execute arbitrary code with their local machine privileges via a specially crafted DLP policy, which is exported and opened on the their machine. In our checks, the user must explicitly allow the code to execute.`

			`### POC`

			`#### Reference`
			`- https://kc.mcafee.com/corporate/index?page=content&id=SB10289`

			`#### Github`
			`No PoCs found on GitHub currently.`