CVE-2026-3598

RustDesk Server Pro <=1.7.5 - Info Disclosure

Title source: llm

Description

Use of a Broken or Risky Cryptographic Algorithm vulnerability in rustdesk-server-pro RustDesk Server Pro rustdesk-server-pro on Windows, MacOS, Linux (Config string generation, web console export modules) allows Retrieve Embedded Sensitive Data. This vulnerability is associated with program routines Config export/generation routines. This issue affects RustDesk Server Pro: through 1.7.5.

References (3)

[Various Sources] https://rustdesk.com/docs/en/client/

[Various Sources] https://docs.google.com/document/d/e/2PACX-1vSds6jjpd38oO_yIAyd1HYtKNUuea-I-ozAPpGhYI7QgAU-QGJ7D8a4rOZVj1vmiUXV1EcdRHf9aZAW/pub

[Various Sources] https://www.vulsec.org/

Scores

EPSS 0.0003

EPSS Percentile 7.5%

Classification

CWE

CWE-684 CWE-327

Status draft

Timeline

Published Mar 05, 2026

Tracked Since Mar 05, 2026