LeakyCreds
NewInstant webhook alerts now available — notified within seconds of any credential detection.Learn more →
Home / Vulnerability Intelligence / CVE-2026-4415

CVE-2026-4415 - Vulnerability Analysis

HighCVSS: 8.1

Last Updated: March 30, 2026

GIGABYTE Gigabyte Control Center - Arbitrary File Write

Published: March 30, 2026Updated: March 30, 2026Remote Exploitable

Overview

GIGABYTE Gigabyte Control Center contains an arbitrary file write vulnerability caused by the pairing feature, letting unauthenticated remote attackers write files anywhere on the OS, leading to code execution or privilege escalation, exploit requires pairing feature enabled.

Severity & Score

Severity: High
CVSS Score: 8.1
EPSS Score: 48.4%(Probability of exploitation in next 30 days)

Impact

Unauthenticated remote attackers can write arbitrary files, leading to code execution or privilege escalation on the system.

Mitigation

Update to the latest version with the pairing feature fixed or disabled.

References

Social Media Activity(1 post)

Michael I Ransier
Michael I Ransier
@thecybermind
Apr 2, 2026

INTEL ALERT] CVE-2026-4425 is live. Is your GIGABYTE Control Center (GCC) acting as a backdoor for digital decay? I’m breaking down the forensic evidence and showing you how to harden your precinct. Don't let unpatched utilities breach your perimeter. Read the full brief at The Cyber Mind Co. https://thecybermind.co/2026/04/02/gigabyte-gcc-cve-2026-4415/?utm_source=mastodon&utm_medium=jetpack_social

View original post

Related Resources

Details

CVE ID
CVE-2026-4415
Severity
High
CVSS Score
8.1
Type
unrestricted_file_upload
Status
unconfirmed
EPSS
48.4%
Social Posts
1

CWE

  • CWE-23

CVSS Metrics

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score

48.4%Probability of exploitation in the next 30 days