CVE-2026-30794 rustdesk-client CVE debrief

Who should care

Organizations using RustDesk Client, especially those in environments where secure communication is paramount, should prioritize patching this vulnerability. This includes but is not limited to remote work setups, organizations with sensitive data, and those in industries with strict security compliance requirements.

Technical summary

The vulnerability is caused by improper certificate validation in the RustDesk Client, specifically in the src/hbbs_http/http_client.Rs file and the TLS retry mechanism with danger_accept_invalid_certs(true). This allows attackers to intercept and manipulate communications, potentially leading to unauthorized access or data breaches. The vulnerability affects RustDesk Client versions through 1.4.8 on multiple platforms including Windows, MacOS, Linux, iOS, and Android.

Defensive priority

High priority due to CRITICAL CVSS score of 9.1 and potential for AiTM attacks.

Recommended defensive actions

• Inventory and update RustDesk Client to a version beyond 1.4.8.
• Review and enforce secure certificate validation practices for TLS communications.
• Implement compensating controls such as network monitoring for suspicious activity.
• Limit exposure by restricting access to sensitive data and systems.
• Monitor for and apply any additional security patches or advisories from the vendor.

Evidence notes

The primary evidence for this vulnerability comes from the CVE record and NVD detail pages. The vulnerability affects RustDesk Client through version 1.4.8. Defenders should verify the version of RustDesk Client in use and check for any official advisories or patches from the vendor. The CVE and NVD entries provide critical details about the vulnerability's impact and affected configurations.

Official resources