CNNVD-202512-4037 Information

CNNVD ID

CNNVD-202512-4037

Related CVE

CVE-2025-14498

• CNNVD Published: 2025-12-23

Description (Chinese)

TradingView Desktop是美国TradingView公司的一个金融图表平台桌面客户端。 TradingView Desktop存在代码问题漏洞，该漏洞源于Electron框架配置不当，可能导致本地权限提升。

Description (English)

TradingView Desktop is a desktop client of the United States TradingView financial chart platform. There is a code loophole in TradingView Desktop, which stems from the inappropriate configuration of the Electron framework, which may lead to an increase in local privileges.

Hazard Level

Medium

Vulnerability Type

代码问题

Affected Vendor

TradingView

Published

2025-12-23

Last Modified

2026-02-24

References

https://www.zerodayinitiative.com/advisories/ZDI-25-1070/

Patch

https://www.tradingview.com/support/solutions/43000673888-tradingview-desktop-releases-and-release-notes/