Gigabyte Control Center developed by GIGABYTE has an Arbitrary File Write vulnerability. When the pairing feature is enabled, unauthenticated remote attackers can write arbitrary files to any location on the underlying operating system, leading to arbitrary code execution or privilege escalation.
| Vendor | Product | Versions |
|---|---|---|
| gigabyte | gigabyte control center | 0, 25.07.21.01 |
Updated severity to CRITICAL, CVSS score to 9.2, added affected versions 25.07.21.01, and included new patch version 25.12.10.01.
Updated severity to CRITICAL, added affected version 25.07.21.01, and included MITRE ATT&CK technique T1006.
Initial creation
