Information Leak Vulnerability in Carbon Black Cloud Windows Sensor by Broadcom
CVE-2024-11035

2.5LOW

Key Information:

Vendor: Symantec
Status: Carbon Black Cloud Windows Sensor
Vendor: CVE Published:; 5 March 2025

What is CVE-2024-11035?

The Carbon Black Cloud Windows Sensor, versions prior to 4.0.3, is susceptible to an information leak vulnerability. This issue can lead to the exposure of sensitive information due to flaws within the software's design or implementation. Organizations using vulnerable versions are advised to update to version 4.0.3 or later to mitigate potential security risks.

Affected Version(s)

Carbon Black Cloud Windows Sensor 4.0.2 and earlier

References

https://support.broadcom.com/web/ecx/support-content-noti...

CVSS V3.1

Score:

2.5

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 5, 2025
Vulnerability Reserved
Nov 8, 2024

Symantec

What is CVE-2024-11035?

Affected Version(s)

References

CVSS V3.1

Timeline