CVE 8.5 HIGH

GIGABYTE｜MacroHub – Local Privilege Escalation_CVE-2026-0870

February 9, 2026 invoker category_cve

8.5 / 10

HIGH

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

MacroHub developed by GIGABYTE has a Local Privilege Escalation vulnerability. Due to the MacroHub application launching external applications with improper privileges, allowing authenticated local attackers to execute arbitrary code with SYSTEM privileges.

AI Analysis

Local Privilege Escalation vulnerability in MacroHub due to improper privileges when launching external applications

Basic Information

ID CVE-2026-0870

Source twcert

Published Feb 9, 2026 at 06:21

Affected Product

Vendor GIGABYTE

Product MacroHub

Affected Versions GIGABYTE MacroHub 0

CWE Classification

CWE-250

AI Assessment

AI Score 8.5 / 10

AI Severity High

Vendor GIGABYTE

Product MacroHub

References

{
    "lastseen": "",
    "description": "MacroHub developed by GIGABYTE has a Local Privilege Escalation vulnerability. Due to the MacroHub application launching external applications with improper privileges, allowing authenticated local attackers to execute arbitrary code with SYSTEM privileges.",
    "published": "2026-02-09T06:21:51.668Z",
    "modified": "2026-02-09T06:21:51.668Z",
    "type": "cve",
    "title": "GIGABYTE\uff5cMacroHub - Local Privilege Escalation",
    "source": "twcert",
    "references": "https://www.twcert.org.tw/tw/cp-132-10701-fc9e0-1.html\nhttps://www.twcert.org.tw/en/cp-139-10702-b40aa-2.html\nhttps://www.gigabyte.com/Support/Security/2362",
    "id": "CVE-2026-0870",
    "bulletinFamily": "",
    "cwe": [
        "CWE-250"
    ],
    "cvelist": null,
    "sourceData": "GIGABYTE MacroHub 0",
    "sourceHref": "",
    "cvss": {
        "score": 8.5,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "MacroHub",
    "version": "0",
    "vendor": "GIGABYTE",
    "ai_description": "Local Privilege Escalation vulnerability in MacroHub due to improper privileges when launching external applications",
    "ai_severity": "High",
    "ai_vendor": "GIGABYTE",
    "ai_product": "MacroHub",
    "ai_version": "0",
    "ai_score": 8.5
}

💭 Join the Security Discussion ❌ Cancel Reply