The open_cmd_tube function in mount.c for gtkdiskfree 1.9.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on the gtkdiskfree temporary file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.013
EPSS Ranking 68.0%