CVE-2019-3595— DLP Endpoint ePO extension not sanitizing CSV exports
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2019-3595
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
DLP Endpoint ePO extension not sanitizing CSV exports
Source: NVD (National Vulnerability Database)
Vulnerability Description
Improper Neutralization of Special Elements used in a Command ('Command Injection') in ePO extension in McAfee Data Loss Prevention (DLP) 11.x prior to 11.3.0 allows Authenticated Adminstrator to execute arbitrary code with their local machine privileges via a specially crafted DLP policy, which is exported and opened on the their machine. In our checks, the user must explicitly allow the code to execute.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Source: NVD (National Vulnerability Database)
Vulnerability Title
McAfee Data Loss Prevention Endpoint 命令操作系统命令注入漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
McAfee Data Loss Prevention Endpoint(DLPe)是美国迈克菲(McAfee)公司的一套集成式终端数据保护解决方案。该方案能够防止机密数据被盗和意外泄露,并提供针对文件处理和传输的安全策略、共享终端数据流控制和数据加密等功能。 McAfee DLPe 11.3.0之前的11.x版本中的ePO扩展存在命令操作系统命令注入漏洞。该漏洞源于外部输入数据构造可执行命令过程中,网络系统或产品未正确过滤其中的特殊元素。攻击者可利用该漏洞执行非法命令。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| McAfee, LLC | DLP Endpoint ePO extension | 11.x ~ 11.3.0 | - |
II. Public POCs for CVE-2019-3595
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2019-3595
Please Login to view more intelligence information
- https://kc.mcafee.com/corporate/index?page=content&id=SB10289x_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2019-3595
Same Patch Batch · McAfee, LLC · 2019-07-24 · 3 CVEs total
| CVE-2019-3622 | DLP Endpoint log file redirection to arbitrary locations | |
| CVE-2019-3591 | DLP Endpoint ePO extension vulnerable to XSS |
IV. Related Vulnerabilities
Same vendor: McAfee, LLC
- CVE-2021-23879
Unquoted service path vulnerability in McAfee Endpoint Produ - CVE-2020-7343
Improper Authorization vulnerability in MA - CVE-2020-7337
Incorrect Permission Assignment for Critical Resource - CVE-2020-7333
Cross-site Scripting (XSS) in firewall ePO extension of McAf - CVE-2020-7332
Cross-Site Request Forgery (CSRF) in firewall ePO extension
Same weakness: CWE-78
- CVE-2026-8273
D-Link DNS-320 system_mgr.cgi cgi_merge_user os command inje - CVE-2026-8272
D-Link DNS-320 webfile_mgr.cgi chown os command injection - CVE-2026-8271
D-Link DNS-320 network_mgr.cgi cgi_upnp_edit os command inje - CVE-2026-8265
Tenda AC6 httpd getLogFile get_log_file os command injection - CVE-2026-8264
Tenda AC6 httpd WifiApScan formWifiApScan os command injecti
V. Comments for CVE-2019-3595
No comments yet