CVE-2026-30789 rustdesk-client CVE debrief

Who should care

Organizations and individuals using RustDesk Client versions up to 1.4.5 on Windows, MacOS, Linux, iOS, and Android should prioritize patching. This vulnerability allows for session replay attacks, posing a significant risk to authentication security.

Technical summary

The vulnerability, CVE-2026-30789, is caused by insufficient computational effort in password hashing and the reuse of session IDs, enabling session replay attacks. It affects RustDesk Client's client login and peer authentication modules. The CVSS vector is CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X.

Defensive priority

High priority due to critical CVSS score of 9.3 and potential for session replay attacks.

Recommended defensive actions

• Apply patches or updates to RustDesk Client to version beyond 1.4.5.
• Review and update authentication configurations to ensure secure session management.
• Implement additional monitoring for unusual authentication attempts.
• Consider compensating controls such as multi-factor authentication.
• Inventory and track RustDesk Client installations for compliance.

Evidence notes

The CVE record and NVD detail provide evidence of the vulnerability's existence and impact. The CVSS score of 9.3 indicates critical severity. Affected products include RustDesk Client up to version 1.4.5 on multiple platforms. Verify platform and version information with official sources.

Official resources