CVE-2026-30798

Name of the Vulnerable Software and Affected Versions RustDesk Client versions through 1.4.5

Description A flaw exists in RustDesk Client related to insufficient verification of data authenticity and improper handling of exceptional conditions, specifically allowing protocol manipulation. The issue resides within the heartbeat sync loop and strategy processing modules, impacting program files src/hbbs http/sync.Rs and the stop-service handler routine in the heartbeat loop. This allows for the acceptance of unauthenticated stop-service commands via a strategy payload.

Recommendations Update RustDesk Client to a version later than 1.4.5.