Gigabyte warns users Control Center flaw could let hackers hijack your files

GIGABYTE Control Center carried critical CVE‑2026‑4415 vulnerability in its pairing feature
Flaw allowed unauthenticated remote attackers to write arbitrary files, execute code, and escalate privileges
Patch released in version 25.12.10.01; users urged to update immediately to secure affected systems

GIGABYTE Control Center, a Windows utility which comes preloaded with certain computers, carried a critical-severity vulnerability that allowed malicious actors to access files, run code, and trigger denial-of-service conditions on affected devices.

The bug has now been addressed and users are advised to patch up without delay.

GIGABYTE is a major hardware manufacturer known for, among other things, PC motherboards. It also built and maintains GIGABYTE Control Center, a utility program for PCs powered by its motherboards. Inside, users can manage and configure different hardware components, such as fans, RGB lights, driver and firmware updates, and more.

Article continues below

operating system, leading to arbitrary code execution or privilege escalation,” the National Vulnerability Database explained.

Some sources claim the attack does not require user interaction or prior authentication, which would make it more dangerous than your average, run-of-the-mill bug.

It is probably the reason why the bug, now tracked as CVE-2026-4415, was given a severity score of 9.2/10 (critical). It was first disclosed by Taiwan’s Computer Emergency Response Team (TWCERT/CC), who credited security researcher David Sprüngli for the discovery.

Versions 25.07.21.01 and earlier are apparently vulnerable, and users are advised to upgrade to version 25.12.10.01 or newer, as soon as possible. This version includes fixes for download path management, message processing, and command encryption, which plug the hole. Gigabyte is yet to publish a standalone security bullet, but users can find the latest version of the software in its standard distribution channels.

Via BleepingComputer

The best antivirus for all budgets

Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews, and opinion in your feeds. Make sure to click the Follow button!

And of course you can also follow TechRadar on TikTok for news, reviews, unboxings in video form, and get regular updates from us on WhatsApp too.

https://cdn.mos.cms.futurecdn.net/G8QNviZt3KrDbfWVANJrNM-1920-80.jpg

Source link

Lil Finder Guy is the cutest thing Apple has made in its 50-year history — and it has a secret

Lil Finder Guy is the cutest thing Apple has made in its 50-year history — and it has a secret

Researchers scan 10 million websites and uncover thousands of exposed API keys quietly granting access to cloud systems and critical infrastructure

If you want a budget TV, this Amazon Fire 4-Series is hard to beat at its record-low price

Ex-Israeli Intelligence Official: Shockwaves of Trump’s “Take Over Gaza” Heard, Felt Across Region

What UK political parties are promising in the 2019 general election

Otto Warmbier’s parents want North Korea to suffer for their son’s death

Could a ‘youthquake’ cause Boris Johnson to lose the general election?

Bruce Springsteen Opens ‘Land of Hope and Dreams” Tour: Concert Review

Blake Lively, Ryan Reynolds’ Kids’ April Fool’s Day Prank

Here’s How Celebrities Master the All-Black Outfit

All Active Clash Of Clans Creator Codes (April 2026)

Earnings call transcript: FitLife Brands Q4 2025 sees revenue surge

SpaceX has filed confidentially for IPO ahead of AI rivals

Aptiv completes spin-off of Versigent, shares begin trading on NYSE

Trump will address the nation on Wednesday on the Iran war Wednesday—here’s what to expect

The YouTuber who has become one of Gen Z’s most beloved celebrities

26 last-minute holiday gifts that are still thoughtful and unique

Practicing gratitude regularly can make you less stressed and sleep better

8 things millennials wish you would just stop getting them for the holidays