PT-2026-28806 · Gigabyte · Gigabyte Control Center
David Spruengli
·
Published
2026-03-30
·
Updated
2026-04-04
·
CVE-2026-4415
CVSS v2.0
10
Critical
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
GIGABYTE Control Center versions prior to 25.12.10.01
Description
GIGABYTE Control Center has an Arbitrary File Write issue. When the pairing feature is enabled, unauthenticated remote attackers can write arbitrary files to any location on the operating system. This can lead to arbitrary code execution or privilege escalation. Reports indicate increased actor activity targeting this issue. The vulnerability affects a large number of gaming systems, potentially allowing attackers to gain system-level access.
Recommendations
Update GIGABYTE Control Center to version 25.12.10.01 or later.
Fix
Memory Corruption
Relative Path Traversal
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Gigabyte Control Center