CVE-2026-30792
Received Received - Intake
Man-in-the-Middle API Message Manipulation in RustDesk Client

Publication date: 2026-03-05

Last updated on: 2026-03-25

Assigner: VULSec Labs

Description
A vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows, MacOS, Linux, iOS, Android, WebClient (Strategy sync, HTTP API client, config options engine modules) allows Application API Message Manipulation via Man-in-the-Middle. This vulnerability is associated with program files src/hbbs_http/sync.Rs, hbb_common/src/config.Rs and program routines Strategy merge loop in sync.Rs, Config::set_options(). This issue affects RustDesk Client: through 1.4.5.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-03-05
Last Modified
2026-03-25
Generated
2026-06-16
AI Q&A
2026-03-05
EPSS Evaluated
2026-06-15
NVD
CVE-2026-30792
EUVD
EUVD-2026-9826
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
rustdesk rustdesk to 1.4.5 (inc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-657 The product violates well-established principles for secure design.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability affects the RustDesk Client on multiple platforms including Windows, MacOS, Linux, iOS, Android, and WebClient. It involves the manipulation of Application API messages via a Man-in-the-Middle (MitM) attack. Specifically, the issue is related to certain program files and routines responsible for syncing and configuration options, allowing an attacker to interfere with the communication between the client and server.

Impact Analysis

Because this vulnerability allows Man-in-the-Middle manipulation of application API messages, an attacker could intercept and alter data exchanged between the RustDesk Client and its server. This could lead to unauthorized changes in configuration, disruption of remote desktop sessions, or potentially gaining unauthorized access or control over the remote system.

Compliance Impact

I don't know

Detection Guidance

I don't know

Mitigation Strategies

[{'type': 'paragraph', 'content': "To mitigate the vulnerability in RustDesk Client (up to version 1.4.5) related to Application API Message Manipulation via Man-in-the-Middle, you should configure RustDesk's advanced security settings to restrict and control remote access permissions."}, {'type': 'list_item', 'content': "Set strict access-mode permissions for incoming connections (e.g., limit to 'view' or 'custom')."}, {'type': 'list_item', 'content': 'Disable or carefully control features such as enable-keyboard, enable-clipboard, enable-file-transfer, enable-camera, enable-terminal, enable-remote-printer, enable-audio, and enable-remote-restart to reduce attack surface.'}, {'type': 'list_item', 'content': 'Use whitelist settings to restrict incoming connections to trusted IP addresses.'}, {'type': 'list_item', 'content': 'Enable approve-mode to require manual acceptance or password verification for incoming connections.'}, {'type': 'list_item', 'content': 'Configure verification-method to enforce strong password policies, including temporary or permanent passwords.'}, {'type': 'list_item', 'content': 'Consider enabling allow-auto-disconnect with a suitable timeout to disconnect inactive sessions automatically.'}, {'type': 'list_item', 'content': 'Disable allow-remote-config-modification to prevent remote changes to client settings.'}, {'type': 'paragraph', 'content': 'Additionally, ensure your RustDesk Client is updated beyond version 1.4.5 once a patched version is available.'}] [1]

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-30792. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart