CVE-2026-4415 - Vulnerability Analysis
HighCVSS: 8.1Last Updated: March 30, 2026
GIGABYTE Gigabyte Control Center - Arbitrary File Write
Published: March 30, 2026Updated: March 30, 2026Remote Exploitable
Overview
GIGABYTE Gigabyte Control Center contains an arbitrary file write vulnerability caused by the pairing feature, letting unauthenticated remote attackers write files anywhere on the OS, leading to code execution or privilege escalation, exploit requires pairing feature enabled.
Severity & Score
Severity: High
CVSS Score: 8.1
Impact
Unauthenticated remote attackers can write arbitrary files, leading to code execution or privilege escalation on the system.
Mitigation
Update to the latest version with the pairing feature fixed or disabled.
References
Related Resources
Details
- CVE ID
- CVE-2026-4415
- Severity
- High
- CVSS Score
- 8.1
- Type
- unrestricted_file_upload
- Status
- new
CWE
- CWE-23
CVSS Metrics
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H