Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
9.3
RustDesk Client: Data Stealing or Tampering on Unsecured Network
CVE-2026-30797
Summary
RustDesk Client, a remote desktop software, has a security flaw that allows an attacker to intercept and manipulate sensitive data when using it on an unsecured network. This can lead to data theft or tampering. Update to the latest version (1.4.6 or later) to fix the issue.
Original title
Missing Authorization vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows, MacOS, Linux, iOS, Android (Flutter URI scheme handler, config import modules) allows Application ...
Original description
Missing Authorization vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows, MacOS, Linux, iOS, Android (Flutter URI scheme handler, config import modules) allows Application API Message Manipulation via Man-in-the-Middle. This vulnerability is associated with program files flutter/lib/common.Dart and program routines importConfig() via URI handler.
This issue affects RustDesk Client: through 1.4.5.
This issue affects RustDesk Client: through 1.4.5.
nvd CVSS4.0
9.3
Vulnerability type
CWE-749
CWE-862
Missing Authorization
Published: 5 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026