CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNNVD•added 2026/03/05 12:0 a.m.•5 views

RustDesk 安全漏洞

RustDesk is a remote access and control software developed by RustDesk personal developers. It is primarily written in Rust and allows for remote maintenance of computers and other devices. Versions of RustDesk 1.4.5 and earlier contain security vulnerabilities, which stem from the transmission o...

8.7CVSS5.8AI score0.00271EPSS

Positive Technologies•added 2026/03/05 12:0 a.m.•4 views

PT-2026-23460

Cleartext Transmission of Sensitive Information vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows, MacOS, Linux, iOS, Android Heartbeat sync loop modules allows Sniffing Attacks. This vulnerability is associated with program files src/hbbs http/sync.Rs and program routin...

8.7CVSS5.9AI score0.00271EPSS

Positive Technologies•added 2026/03/05 12:0 a.m.•6 views

PT-2026-23465

Missing Authorization, Missing Authentication for Critical Function vulnerability in rustdesk-server RustDesk Server rustdesk-server, rustdesk-server-pro on hbbs/hbbr on all server platforms Rendezvous server hbbs, relay server hbbr modules allows Privilege Abuse. This vulnerability is associated...

8.8CVSS5.9AI score0.00648EPSS

CNNVD•added 2026/03/05 12:0 a.m.•5 views

RustDesk 安全漏洞

RustDesk is a remote access and control software developed by RustDesk personal developers. It is primarily written in Rust and can be used to maintain computers and other devices remotely. Versions of RustDesk 1.4.5 and earlier contain security vulnerabilities. These vulnerabilities stem from...

9.1CVSS5.8AI score0.00265EPSS

CNNVD•added 2026/03/05 12:0 a.m.•9 views

RustDesk 安全漏洞

8.2CVSS5.8AI score0.00288EPSS

Positive Technologies•added 2026/03/05 12:0 a.m.•9 views

PT-2026-23462

Name of the Vulnerable Software and Affected Versions RustDesk Client versions through 1.4.5 Description A missing authorization issue exists in the RustDesk Client on Windows, MacOS, Linux, iOS, and Android. The issue allows manipulation of Application API Messages via a Man-in-the-Middle attack...

9.3CVSS5.8AI score0.00455EPSS

Exploits1References8

CNNVD•added 2026/03/05 12:0 a.m.•4 views

RustDesk 安全漏洞

9.8CVSS5.8AI score0.00377EPSS

CNNVD•added 2026/03/05 12:0 a.m.•6 views

RustDesk 安全漏洞

8.2CVSS5.8AI score0.00083EPSS

Exploits1References4

Positive Technologies•added 2026/03/05 12:0 a.m.•3 views

PT-2026-23455

Authentication Bypass by Capture-replay, Use of Password Hash With Insufficient Computational Effort vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows, MacOS, Linux, iOS, Android Client login, peer authentication modules allows Reusing Session IDs aka Session Replay. Thi...

9.3CVSS5.9AI score0.00377EPSS

Positive Technologies•added 2026/03/05 12:0 a.m.•8 views

PT-2026-23457

Name of the Vulnerable Software and Affected Versions RustDesk Client versions through 1.4.5 Description A flaw exists in RustDesk Client on Windows, MacOS, Linux, iOS, Android, and WebClient that allows manipulation of Application API Messages through a Man-in-the-Middle attack. The issue is...

9.1CVSS5.8AI score0.00265EPSS

Exploits1References8

RedhatCVE•added 2026/02/22 1:28 a.m.•5 views

CVE-2026-2490

RustDesk Client for Windows Transfer File Link Following Information Disclosure Vulnerability. This vulnerability allows local attackers to disclose sensitive information on affected installations of RustDesk Client for Windows. An attacker must first obtain the ability to execute low-privileged...

5.5CVSS5.7AI score0.00319EPSS

Exploits0References1

NVD•added 2026/02/20 11:16 p.m.•5 views

CVE-2026-2490

5.5CVSS0.00319EPSS

OSV•added 2026/02/20 11:16 p.m.•3 views

CVE-2026-2490

5.5CVSS5.9AI score0.00319EPSS

Vulnrichment•added 2026/02/20 10:24 p.m.•5 views

CVE-2026-2490 RustDesk Client for Windows Transfer File Link Following Information Disclosure Vulnerability

5.5CVSS5.6AI score0.00319EPSS

Cvelist•added 2026/02/20 10:24 p.m.•22 views

CVE-2026-2490 RustDesk Client for Windows Transfer File Link Following Information Disclosure Vulnerability

5.5CVSS0.00319EPSS

ATTACKERKB•added 2026/02/20 10:24 p.m.•5 views

CVE-2026-2490

5.5CVSS5.7AI score0.00319EPSS

Exploits0References3Affected Software1

CVE•added 2026/02/20 10:24 p.m.•13 views

CVE-2026-2490

CVE-2026-2490 affects RustDesk Client for Windows, specifically the Transfer File feature. A local attacker with low-privilege execution can upload a symbolic link to cause the service to read arbitrary files, potentially exposing data in the SYSTEM context. Multiple sources (ZDI-26-117, RedHat R...

5.5CVSS5.7AI score0.00319EPSS

CNNVD•added 2026/02/20 12:0 a.m.•6 views

RustDesk 后置链接漏洞

RustDesk is a remote access and control software developed by RustDesk personal developers. It is primarily written in Rust and can be used to maintain computers and other devices remotely. The RustDesk Client for Windows has a post-release link vulnerability, which stems from a symbolic link iss...

5.5CVSS6.1AI score0.00319EPSS