If Endpoint Standard is enabled, place the device in a test policy and disable Endpoint Standard Reporting and Enforcement using Policy Rules to confirm if it's possible that a permission rule might workaround or resolve the issue. If disabling Endpoint Standard resolves the issue, proceed to step 5. If disabling Endpoint Standard does not resolve the issue or if Endpoint Standard is disabled proceed to step 6.
Create a path based Permission rule that allows the relevant application paths to run. If this issue is happening due to an interoperability issue between VMware Carbon Black and the Operating System / Third Party Software, then likely an API Bypass or Full Bypass rule will be required.
If any relevant hash(s) do not have a definite reputation (Anything other than NOT_LISTED or UNKNOWN) or a trusted reputation then they may need to be added to the CBC Company Approved List if your organization determines that the hash(s) should be trusted. If not or if this does not resolve the issue, go to step 7.