Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
RustDesk HTTP Client Silently Accepts Invalid TLS Certificates After Handshake Failure
Vulnerability Description
Cleartext Transmission of Sensitive Information vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows, MacOS, Linux, iOS, Android (Heartbeat sync loop modules) allows Sniffing Attacks. This vulnerability is associated with program files src/hbbs_http/sync.Rs and program routines Heartbeat JSON payload construction (preset-address-book-password). This issue affects RustDesk Client: through 1.4.5.
CVSS Information
N/A
Vulnerability Type
敏感数据的明文传输
Vulnerability Title
RustDesk 安全漏洞
Vulnerability Description
RustDesk是RustDesk个人开发者的一款远程访问和远程控制软件,主要由 Rust 编写,可以远程维护计算机和其他设备。 RustDesk 1.4.5及之前版本存在安全漏洞,该漏洞源于敏感信息明文传输,可能导致嗅探攻击。
CVSS Information
N/A
Vulnerability Type
N/A