What is CVE-2020-37251?

CVE-2020-37251 is a high-severity vulnerability in Real Realtimes Desktop Service, classified under Unquoted Search Path or Element. CVSS score: 7.8/10. Published 2026-06-19.

How severe is CVE-2020-37251?

High severity. CVSS v3 base score is 7.8 out of 10.

Vulnerability in Real Realtimes Desktop Service

CVE-2020-37251

RealTimes Desktop Service 18.1.4 contains an unquoted service path vulnerability in the rpdsvc.exe binary that allows local attackers to escalate privileges. Attackers can place malicious executables in unquoted path directories to execute…

CVSS v3 metric

CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.

Affected products

Real Realtimes Desktop Service — versions 18.1.4

Weakness classification (CWE)

CWE-428 — Unquoted Search Path or Element

References

disclosure@vulncheck.com (exploit)
disclosure@vulncheck.com (product)
disclosure@vulncheck.com (third-party-advisory)

Frequently asked questions

What is CVE-2020-37251?: CVE-2020-37251 is a high-severity vulnerability in Real Realtimes Desktop Service, classified under Unquoted Search Path or Element. CVSS score: 7.8/10. Published 2026-06-19.
How severe is CVE-2020-37251?: High severity. CVSS v3 base score is 7.8 out of 10.