{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-30784", "assignerOrgId": "2fdefc65-d750-4b8d-96ee-6e2c0c42dbfe", "state": "REJECTED", "assignerShortName": "VULSec", "dateReserved": "2026-03-05T14:13:35.407Z", "datePublished": "2026-03-05T15:58:46.790Z", "dateUpdated": "2026-06-22T07:40:58.235Z", "dateRejected": "2026-06-22T07:40:58.235Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "2fdefc65-d750-4b8d-96ee-6e2c0c42dbfe", "shortName": "VULSec", "dateUpdated": "2026-06-22T07:40:58.235Z"}, "rejectedReasons": [{"lang": "en", "value": "This CVE ID has been withdrawn by its CVE Numbering Authority.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "This CVE ID has been withdrawn by its CVE Numbering Authority."}]}], "x_generator": {"engine": "Vulnogram 1.0.2"}}}}

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-30784", "assignerOrgId": "2fdefc65-d750-4b8d-96ee-6e2c0c42dbfe", "state": "REJECTED", "assignerShortName": "VULSec", "dateReserved": "2026-03-05T14:13:35.407Z", "datePublished": "2026-03-05T15:58:46.790Z", "dateUpdated": "2026-06-22T07:40:58.235Z", "dateRejected": "2026-06-22T07:40:58.235Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "2fdefc65-d750-4b8d-96ee-6e2c0c42dbfe", "shortName": "VULSec", "dateUpdated": "2026-06-22T07:40:58.235Z"}, "rejectedReasons": [{"lang": "en", "value": "This CVE ID has been withdrawn by its CVE Numbering Authority.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "This CVE ID has been withdrawn by its CVE Numbering Authority."}]}], "x_generator": {"engine": "Vulnogram 1.0.2"}}}}

{"affected": [{"affectedData": [{"collectionURL": "https://github.com/rustdesk/", "defaultStatus": "affected", "modules": ["Rendezvous server (hbbs)", "relay server (hbbr)"], "packageName": "rustdesk-server, rustdesk-server-pro", "platforms": ["hbbs/hbbr on all server platforms"], "product": "RustDesk Server", "programFiles": ["src/rendezvous_server.rs", "src/relay_server.rs"], "programRoutines": [{"name": "handle_punch_hole_request()"}, {"name": "RegisterPeer handler"}, {"name": "relay forwarding"}], "repo": "https://github.com/rustdesk/rustdesk-server", "vendor": "rustdesk-server", "versions": [{"changes": [{"at": "Server Pro", "status": "affected"}], "lessThanOrEqual": "1.7.5", "status": "affected", "version": "0", "versionType": "custom"}, {"changes": [{"at": "Server OSS", "status": "affected"}], "lessThanOrEqual": "1.1.15", "status": "affected", "version": "0", "versionType": "custom"}]}], "source": "2fdefc65-d750-4b8d-96ee-6e2c0c42dbfe"}], "configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:rustdesk:rustdesk_server:*:*:*:*:oss:*:*:*", "matchCriteriaId": "4EEF792E-C412-4ECD-A2A2-5506601F4404", "versionEndIncluding": "1.1.15", "vulnerable": true}, {"criteria": "cpe:2.3:a:rustdesk:rustdesk_server:*:*:*:*:pro:*:*:*", "matchCriteriaId": "4F6E21F9-385D-4DB4-9CD4-EDB43561D9E5", "versionEndIncluding": "1.7.5", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Missing Authorization, Missing Authentication for Critical Function vulnerability in rustdesk-server RustDesk Server rustdesk-server, rustdesk-server-pro on hbbs/hbbr on all server platforms (Rendezvous server (hbbs), relay server (hbbr) modules) allows Privilege Abuse. This vulnerability is associated with program files src/rendezvous_server.Rs, src/relay_server.Rs and program routines handle_punch_hole_request(), RegisterPeer handler, relay forwarding.\n\nThis issue affects RustDesk Server: through 1.7.5, through 1.1.15."}, {"lang": "es", "value": "Vulnerabilidad de Autorizaci\u00f3n Faltante, Autenticaci\u00f3n Faltante para Funci\u00f3n Cr\u00edtica en rustdesk-server RustDesk Server rustdesk-server, rustdesk-server-pro en hbbs/hbbr en todas las plataformas de servidor (m\u00f3dulos de servidor Rendezvous (hbbs), servidor de retransmisi\u00f3n (hbbr)) permite el Abuso de Privilegios. Esta vulnerabilidad est\u00e1 asociada con los archivos de programa src/rendezvous_server.Rs, src/relay_server.Rs y las rutinas de programa handle_punch_hole_request(), el gestor RegisterPeer, el reenv\u00edo de retransmisi\u00f3n.\n\nEste problema afecta a RustDesk Server: hasta 1.7.5, hasta 1.1.15."}], "id": "CVE-2026-30784", "lastModified": "2026-06-17T10:32:54.900", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "availabilityRequirement": "NOT_DEFINED", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "LOW", "vulnConfidentialityImpact": "NONE", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "2fdefc65-d750-4b8d-96ee-6e2c0c42dbfe", "type": "Secondary"}], "ssvcV203": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "ssvcData": {"id": "CVE-2026-30784", "options": [{"exploitation": "poc"}, {"automatable": "yes"}, {"technicalImpact": "total"}], "role": "CISA Coordinator", "timestamp": "2026-03-06T10:28:27.311766Z", "version": "2.0.3"}}]}, "published": "2026-03-05T16:16:19.110", "references": [{"source": "2fdefc65-d750-4b8d-96ee-6e2c0c42dbfe", "tags": ["Exploit", "Third Party Advisory"], "url": "https://docs.google.com/document/d/e/2PACX-1vSds6jjpd38oO_yIAyd1HYtKNUuea-I-ozAPpGhYI7QgAU-QGJ7D8a4rOZVj1vmiUXV1EcdRHf9aZAW/pub"}, {"source": "2fdefc65-d750-4b8d-96ee-6e2c0c42dbfe", "tags": ["Product", "Vendor Advisory"], "url": "https://rustdesk.com/docs/en/self-host/"}, {"source": "2fdefc65-d750-4b8d-96ee-6e2c0c42dbfe", "tags": ["Not Applicable"], "url": "https://www.vulsec.org/"}], "sourceIdentifier": "2fdefc65-d750-4b8d-96ee-6e2c0c42dbfe", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-306"}, {"lang": "en", "value": "CWE-862"}], "source": "2fdefc65-d750-4b8d-96ee-6e2c0c42dbfe", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": ["hbbs/hbbr on all server platforms"], "status": "affected", "versions": {"scheme": "semver", "value": "[0,1.1.15]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "product": "rustdesk_server", "vendor": "rustdesk-server"}, {"configurations": [{"platform": ["hbbs/hbbr_on_all_server_platforms"], "status": "affected", "versions": {"scheme": "semver", "value": "[0,1.7.5]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "RustDesk Server", "source": "cna", "vendor": "rustdesk-server"}, "product": "rustdesk_server_pro", "vendor": "rustdesk-server"}], "analysis": {"en": {"generated_at": "2026-04-17T12:43:20.080957+00:00", "value": {"mitigation_remediation": ["Install the latest RustDesk Server release that includes signed session authorization token validation for hbbs and hbbr.", "If an update is unavailable, block external traffic to ports 21116 and 21117 using a firewall, and limit connections to trusted networks.", "Configure strong, unique passwords for any administrative interfaces and monitor server logs for suspicious connection attempts."], "summary": {"action": "Patch Update", "impact": "Unauthorized Access and Privilege Abuse"}, "threat_synthesis": {"affected_systems": "The flaw is present in all RustDesk Server releases up to and including version 1.7.5 and 1.1.15. Both the OSS and Pro variants, running on any supported operating system, are affected. The vulnerable components are the rendezvous (hbbs) and relay (hbbr) servers listening on ports 21116 and 21117.", "description_and_impact": "Missing authentication and authorization checks in the hbbs (rendezvous) and hbbr (relay) modules of RustDesk Server allow attackers to connect to the broker services without credentials, enabling privilege abuse. The vulnerability is located in functions that handle punch\u2013hole requests and peer registration, potentially allowing an unauthenticated user to interfere with session establishment or routing. This can compromise confidentiality and availability of remote sessions and may provide a foothold for further exploitation. Based on the description, it is inferred that attackers would need to establish a network connection to the hbbs/hbbr broker services, likely via the default listening ports (21116 for hbbs and 21117 for hbbr).", "risk_and_exploitability": "The vulnerability has a CVSS score of 8.8, indicating high severity, and an EPSS score below 1\u202f%, meaning low but nonzero exploitation probability. It is not listed in the CISA KEV catalog. Based on the description, it is inferred that attackers would require network access to the broker services; once connected, they could perform privileged operations by bypassing authentication. The vulnerability is related to CWE\u2011306 and CWE\u2011862."}}}}, "created": "2026-03-06T15:01:41.849683+00:00", "updated": "2026-04-17T12:45:16.163261+00:00", "vendors": ["rustdesk-server", "rustdesk-server$PRODUCT$rustdesk_server", "rustdesk-server$PRODUCT$rustdesk_server_pro"]}