What is CVE-2026-4415?

CVE-2026-4415 is a high-severity vulnerability in Gigabyte Control Center, classified under Relative Path Traversal. CVSS score: 8.1/10. Published 2026-03-30.

How severe is CVE-2026-4415?

High severity. CVSS v3 base score is 8.1 out of 10.

Path Traversal in Gigabyte Control Center

CVE-2026-4415

Gigabyte Control Center developed by GIGABYTE has an Arbitrary File Write vulnerability. When the pairing feature is enabled, unauthenticated remote attackers can write arbitrary files to any location on the underlying operating system, le…

EPSS: 0.008 (74.2th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.1 (High). Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H.

Affected products

Gigabyte Control Center — versions 0

Weakness classification (CWE)

CWE-23 — Relative Path Traversal

References

www.twcert.org.tw/tw/cp-132-10803-ae014-1.html (third-party-advisory)
www.twcert.org.tw/en/cp-139-10804-689cd-2.html (third-party-advisory)

Frequently asked questions

What is CVE-2026-4415?: CVE-2026-4415 is a high-severity vulnerability in Gigabyte Control Center, classified under Relative Path Traversal. CVSS score: 8.1/10. Published 2026-03-30.
How severe is CVE-2026-4415?: High severity. CVSS v3 base score is 8.1 out of 10.