CVE-2025-14498

Name of the Vulnerable Software and Affected Versions TradingView Desktop (affected versions not specified)

Description A local privilege escalation issue exists in TradingView Desktop due to an uncontrolled search path within the Electron framework. An attacker with low-privileged code execution can exploit this to escalate privileges and execute arbitrary code in the context of a target user. The issue stems from the product loading a script file from an unsecured location.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.