QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2026-30797

Back to search

CVE-2026-30797

Published: Mar 5, 2026

Modified: Mar 17, 2026

PUBLISHED

Description

Missing Authorization vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows, MacOS, Linux, iOS, Android (Flutter URI scheme handler, config import modules) allows Application API Message Manipulation via Man-in-the-Middle. This vulnerability is associated with program files flutter/lib/common.Dart and program routines importConfig() via URI handler. This issue affects RustDesk Client: through 1.4.5.

VendorProductVersions

rustdesk-client

RustDesk Client

affected
0 - <= 1.4.5

Weaknesses (CWE)

CWE-862
CWE-749

References

https://rustdesk.com/docs/en/client/
technical-description
x_--config documentation
https://www.vulsec.org/
vdb-entry
third-party-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now