Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.7
RustDesk Server Pro uses weak encryption, exposing sensitive data
CVE-2026-3598
Summary
RustDesk Server Pro, a remote access software, uses a weak encryption method to protect sensitive data. This means that if an attacker gains access to this data, they can retrieve sensitive information. Update to version 1.7.6 or later to fix this issue.
Original title
Use of a Broken or Risky Cryptographic Algorithm vulnerability in rustdesk-server-pro RustDesk Server Pro rustdesk-server-pro on Windows, MacOS, Linux (Config string generation, web console export ...
Original description
Use of a Broken or Risky Cryptographic Algorithm vulnerability in rustdesk-server-pro RustDesk Server Pro rustdesk-server-pro on Windows, MacOS, Linux (Config string generation, web console export modules) allows Retrieve Embedded Sensitive Data. This vulnerability is associated with program routines Config export/generation routines.
This issue affects RustDesk Server Pro: through 1.7.5.
This issue affects RustDesk Server Pro: through 1.7.5.
nvd CVSS4.0
8.7
Vulnerability type
CWE-327
Use of a Broken Cryptographic Algorithm
CWE-684
Published: 5 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026