CVE-2024-11035: Carbon Black Cloud Windows Sensor Information Leak

2.5 CVSS

Description

Carbon Black Cloud Windows Sensor, prior to 4.0.3, may be susceptible to an Information Leak vulnerability, which s a type of issue whereby sensitive information may b exposed due to a vulnerability in software.

Classification

CVE ID: CVE-2024-11035

CVSS Base Severity: LOW

CVSS Base Score: 2.5

CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N

Affected Products

Vendor: Symantec

Product: Carbon Black Cloud Windows Sensor

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.02% (probability of being exploited)

EPSS Percentile: 1.46% (scored less or equal to compared to others)

EPSS Date: 2025-04-02 (when was this score calculated)

References

https://nvd.nist.gov/vuln/detail/CVE-2024-11035
https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25472

Timeline

2025-03-05 17:40:10 UTC
CVE

Carbon Black Cloud Windows Sensor Information Leak