GIGABYTE Control Center on Windows is vulnerable to an arbitrary file-write flaw that could let a remote unauthenticated attacker access files on affected hosts, with the issue rated critical at 9.2 out of 10 under CVSS v4.0.
KEY FACTS
- Affected software GIGABYTE Control Center, a utility that ships on the company’s laptops and motherboards.
- Exposure Systems with the pairing feature enabled on version 25.07.21.01 and earlier are vulnerable.
- Impact Successful exploitation could lead to code execution, privilege escalation, or denial of service.
- Fix GIGABYTE says version 25.12.10.01 includes changes to address the issue.
The issue is tracked as CVE-2026-4415 and was discovered by security researcher David Sprüngli. Taiwan’s CERT said that when pairing is enabled, unauthenticated remote attackers can write arbitrary files to any location on the underlying operating system, which can lead to arbitrary code execution or privilege escalation in the advisory from Taiwan’s CERT.
The vendor said the latest release, 25.12.10.01, includes fixes for download path management, message processing, and command encryption. It also urged customers to upgrade immediately and said users should download the software from its official portal to reduce the risk of trojanized installers.
WHY IT MATTERS
The flaw affects a utility that manages hardware settings, updates and device controls on GIGABYTE systems, so a successful attack could reach core parts of a Windows installation. Users with the pairing feature enabled are advised to update to the latest version as soon as possible.