Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
9.1
RustDesk Client allows hackers to manipulate messages on Windows, MacOS, Linux, iOS, Android, and Web.
CVE-2026-30792
Summary
RustDesk Client, a remote desktop application, has a security flaw that allows hackers to intercept and manipulate messages between users. This means that sensitive information could be altered or stolen. Update to the latest version of RustDesk Client to protect your data.
Original title
A vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows, MacOS, Linux, iOS, Android, WebClient (Strategy sync, HTTP API client, config options engine modules) allows Applicati...
Original description
A vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows, MacOS, Linux, iOS, Android, WebClient (Strategy sync, HTTP API client, config options engine modules) allows Application API Message Manipulation via Man-in-the-Middle. This vulnerability is associated with program files src/hbbs_http/sync.Rs, hbb_common/src/config.Rs and program routines Strategy merge loop in sync.Rs, Config::set_options().
This issue affects RustDesk Client: through 1.4.5.
This issue affects RustDesk Client: through 1.4.5.
nvd CVSS4.0
9.1
Vulnerability type
CWE-657
Published: 5 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026