CVE-2026-30785

Name of the Vulnerable Software and Affected Versions RustDesk Client versions through 1.4.5

Description The RustDesk Client software contains issues related to improperly controlled modification of object prototype attributes ('Prototype Pollution') and the use of a password hash with insufficient computational effort. These issues potentially allow for the retrieval of embedded sensitive data. The problems are associated with program files including hbb common/src/password security.Rs, hbb common/src/config.Rs, hbb common/src/lib.Rs (specifically the get uuid routine), and machine-uid/src/lib.Rs. The affected program routines include symmetric crypt(), encrypt str or original(), decrypt str or original(), and get machine id().

Recommendations Update RustDesk Client to a version later than 1.4.5.