CVE-2026-30796 - RustDesk Server Pro API Requires Address Book Password in Plaintext for Sync Pro...

CVE ID : CVE-2026-30796 Published : March 5, 2026, 4:16 p.m. | 1 hour, 20 minutes ago Description : Cleartext Transmission of Sensitive Information vulnerability in rustdesk-server-pro RustDesk Server Pro rustdesk-server-pro on Windows, MacOS, Linux (Address book sync API modules) allows Sniffing Attacks. This vulnerability is associated with program files Closed source — API endpoint handling heartbeat sync and program routines Heartbeat API handler (accepts preset-address-book-password in plaintext). This issue affects RustDesk Server Pro: through 1.7.5. Severity: 8.7 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...