CVE-2026-9492
Received Received - Intake

Improper Access Control in Gigabyte Control Center MBStorage Module

Vulnerability report for CVE-2026-9492, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-07-13

Last updated on: 2026-07-13

Assigner: TWCERT/CC

Description

The MBStorage DRAM lighting control module within Gigabyte Control Center (GCC) developed by GIGABYTE Technology has an Improper Access Control vulnerability. Authenticated local attackers can send specific IOCTL commands through the driver MyPortIO_x64.sys bundled with the module, thereby arbitrarily reading and writing physical memory and obtaining kernel-level privileges.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-07-13
Last Modified
2026-07-13
Generated
2026-07-13
AI Q&A
2026-07-13
EPSS Evaluated
N/A
NVD
EUVD

Affected Vendors & Products

Showing 2 associated CPEs
Vendor Product Version / Range
gigabyte control_center to 26.02.10.01 (inc)
gigabyte control_center From 26.06.03.01 (inc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-782 The product implements an IOCTL with functionality that should be restricted, but it does not properly enforce access control for the IOCTL.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Mitigation Strategies

To mitigate the CVE-2026-9492 vulnerability, users should update the MBStorage DRAM lighting control module within Gigabyte Control Center to version 26.06.03.01 or later.

This update addresses the improper access control flaw that allows authenticated local attackers to send crafted IOCTL commands through the MyPortIO_x64.sys driver, preventing arbitrary read/write operations on physical memory and the escalation to kernel-level privileges.

Executive Summary

CVE-2026-9492 is an improper access control vulnerability in the MBStorage DRAM lighting control module of the Gigabyte Control Center (GCC).

Authenticated local attackers can exploit this flaw by sending specially crafted IOCTL commands through the MyPortIO_x64.sys driver, which is part of the module.

This allows attackers to arbitrarily read and write physical memory and gain kernel-level privileges on the affected system.

Impact Analysis

This vulnerability can have severe impacts because it allows an authenticated local attacker to gain kernel-level privileges.

With kernel-level access, an attacker can bypass many security controls, manipulate system memory arbitrarily, and potentially take full control of the affected system.

This could lead to unauthorized access to sensitive data, system instability, or the installation of persistent malicious software.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-9492. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart