CVE-2026-30793 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Cross-Site Request Forgery (CSRF) vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows, MacOS, Linux, iOS, Android (Flutter URI scheme ha…
Critical CVSS: 9.3

CVE-2026-30793

Cross-Site Request Forgery (CSRF) vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows, MacOS, Linux, iOS, Android (Flutter URI scheme handler, FFI bridge modules) allows Privilege Escalation. This vulnerability is associated with program files flutter/lib/common.Dart, src/flutter_ffi.Rs and program routines URI handler for rustdesk://password/, bind.MainSetPermanentPassword().

This issue affects RustDesk Client: through 1.4.5.
Vendor
Rustdesk
Product
Rustdesk
CWE
CWE-285
Yayın Tarihi
2026-03-05 16:16:20
Güncelleme
2026-03-25 15:34:35
Source Identifier
2fdefc65-d750-4b8d-96ee-6e2c0c42dbfe
KEV Date Added
-

Kategoriler

CWE-285 Rustdesk CRITICAL Rustdesk 2026

Referanslar

https://docs.google.com/document/d/e/2PACX-1vSds6jjpd38oO_yIAyd1HYtKNUuea-I-ozAPpGhYI7QgAU-QGJ7D8a4rOZVj1vmiUXV1EcdRHf9aZAW/pub https://github.com/rustdesk/hbb_common https://github.com/rustdesk/rustdesk https://www.vulsec.org/