Tradingview · Rdesktop · CVE-2025-14498
**Name of the Vulnerable Software and Affected Versions**
TradingView Desktop (affected versions not specified)
**Description**
A local privilege escalation issue exists in TradingView Desktop due to an uncontrolled search path within the Electron framework. An attacker with low-privileged code execution can exploit this to escalate privileges and execute arbitrary code in the context of a target user. The issue stems from the product loading a script file from an unsecured location.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.