CSRF in Rustdesk-client Rustdesk Client

CVE-2026-30793

Cross-Site Request Forgery (CSRF) vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows, MacOS, Linux, iOS, Android (Flutter URI scheme handler, FFI bridge modules) allows Privilege Escalation. This vulnerability is a…

EPSS: 0.000 (12.4th percentile) — read the EPSS interpretation.

Affected products

Rustdesk-client Rustdesk Client — versions 0

Weakness classification (CWE)

References

github.com/rustdesk/rustdesk (product)
github.com/rustdesk/hbb_common (product)
docs.google.com/document/d/e/2PACX-1vSds6jjpd38oO_yIAyd1HYtKNUuea-I-ozAPpGhYI7Q… (third-party-advisory, exploit)
www.vulsec.org/ (vdb-entry, third-party-advisory)