Primary

Context

RustDesk Server Pro Cryptographic Vulnerability Allowing Retrieval of Sensitive Data

Vulnerability

A vulnerability in RustDesk Server Pro versions through 1.7.5 on Windows, macOS, and Linux allows the retrieval of embedded sensitive data due to the use of a broken or risky cryptographic algorithm. This issue arises in the application's configuration export and generation routines, particularly within the web console export modules.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive embedded data.

Reproduction

The vulnerability can be reproduced by exporting configuration data through the RustDesk Server Pro web console. The exported data will contain sensitive information that should not be accessible due to the application's cryptographic protections.

Added: Mar 5, 2026, 3:18 PM

Updated: Mar 5, 2026, 3:18 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.6

remediation

0.0

relevance

3.5

threat

1.6

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.6

remediation

0.0

relevance

3.5

threat

1.6

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

RustDesk Server Pro Cryptographic Vulnerability Allowing Retrieval of Sensitive Data

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating