CVE-2026-30792 - RustDesk Client Blindly Merges Unauthenticated Strategy Payloads, Bypassing Loca...

CVE ID : CVE-2026-30792 Published : March 5, 2026, 4:16 p.m. | 1 hour, 20 minutes ago Description : A vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows, MacOS, Linux, iOS, Android, WebClient (Strategy sync, HTTP API client, config options engine modules) allows Application API Message Manipulation via Man-in-the-Middle. This vulnerability is associated with program files src/hbbs_http/sync.Rs, hbb_common/src/config.Rs and program routines Strategy merge loop in sync.Rs, Config::set_options(). This issue affects RustDesk Client: through 1.4.5. Severity: 9.1 | CRITICAL Visit the link for more details, such as CVSS details, affected products, timeline, and more...