CVE-2026-30784
Received
Received - Intake
Missing Authentication in RustDesk Server Enables Privilege Abuse
Vulnerability report for CVE-2026-30784, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.
Publication date: 2026-03-05
Last updated on: 2026-06-22
Assigner: VULSec Labs
Description
Description
Rejected reason: This CVE ID has been withdrawn by its CVE Numbering Authority.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| rustdesk | rustdesk_server | to 1.7.5 (inc) |
| rustdesk | rustdesk_server | to 1.1.15 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-306 | The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources. |
| CWE-862 | The product does not perform an authorization check when an actor attempts to access a resource or perform an action. |