GIGABYTE Control Center vulnerable to arbitrary file write flaw An arbitrary file-write vulnerability in the GIGABYTE Control Center's pairing feature allows unauthenticated remote attackers to write files to any location on affected systems, potentially leading to code execution, privilege escalation, or denial-of-service. GIGABYTE has released version 25.12.10.01 to address the issue tracked as CVE-2026-4415 and urges users to update from earlier versions while downloading patches only from the vendor's official portal to avoid trojanized installers. #GIGABYTE_Control_Center #CVE-2026-4415

An arbitrary file-write flaw in GIGABYTE Control Center’s pairing feature (versions ≤ 25.07.21.01) allows unauthenticated remote code execution and privilege escalation. Patch released in version 25.12.10.01. #GIGABYTE #FileWrite #Taiwan