Skip to main content

Performance Library CVE-2026-4416

| EUVD-2026-17071 HIGH
Deserialization of Untrusted Data (CWE-502)
2026-03-30 twcert
Deserialization Privilege Escalation Performance Library
8.5
CVSS 4.0 · NVD
Share

Severity by source

NVD PRIMARY
8.5 HIGH
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
X

Lifecycle Timeline

6
Analysis Updated
Apr 16, 2026 - 06:11 EUVD-patch-fix
executive_summary
Re-analysis Queued
Apr 16, 2026 - 05:29 backfill_euvd_patch
patch_released
Patch available
Apr 16, 2026 - 05:29 EUVD
25.12.31.01
EUVD ID Assigned
Mar 30, 2026 - 08:15 euvd
EUVD-2026-17071
Analysis Generated
Mar 30, 2026 - 08:15 vuln.today
CVE Published
Mar 30, 2026 - 07:52 nvd
HIGH 8.5

DescriptionCVE.org

The Performance Library component of Gigabyte Control Center has an Insecure Deserialization vulnerability. Authenticated local attackers can send a malicious serialized payload to the EasyTune Engine service, resulting in privilege escalation.

AnalysisAI

Insecure deserialization in Gigabyte Control Center's Performance Library component allows authenticated local users to escalate privileges to SYSTEM by sending crafted serialized payloads to the EasyTune Engine service. Affecting Gigabyte Performance Library across versions, this CWE-502 flaw enables low-privileged users to gain complete control of the Windows system. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts
Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Authenticate to system
Delivery
Craft malicious serialized payload
Exploit
Send to EasyTune Engine service
Execution
Deserialize untrusted object
Impact
Execute arbitrary code with elevated privileges
Sign in to reveal

Vulnerability AssessmentAI

Exploitation Requires Gigabyte Control Center with Performance Library component and EasyTune Engine service installed and running. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment Real-world risk is moderate to high for environments where Gigabyte hardware is deployed with unprivileged users. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker with standard user credentials on a Windows workstation equipped with Gigabyte hardware gains initial access through phishing or insider threat. The attacker discovers the EasyTune Engine service running with SYSTEM privileges and crafts a malicious serialized .NET or Java object containing embedded commands for privilege escalation. …
Remediation Users should immediately consult the TWCERT advisories at https://www.twcert.org.tw/en/cp-139-10806-fbc4a-2.html for vendor-specific remediation guidance and patch availability information. … Detailed patch versions, workarounds, and compensating controls in full report.
Sign in to read full assessment

Recommended ActionAI

Within 24 hours: Identify all systems running Gigabyte Performance Library and document current versions in use. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-4416 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy