What is CVE-2020-37252?

CVE-2020-37252 is a high-severity vulnerability in Realtek Audio Service, classified under Unquoted Search Path or Element. CVSS score: 7.8/10. Published 2026-06-19.

How severe is CVE-2020-37252?

High severity. CVSS v3 base score is 7.8 out of 10.

Vulnerability in Realtek Audio Service

CVE-2020-37252

Realtek Audio Service 1.0.0.55 contains an unquoted service path vulnerability in RtkAudioService64.exe that allows local attackers to escalate privileges by injecting malicious code. Attackers can place executable files in the unquoted se…

CVSS v3 metric

CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.

Affected products

Realtek Audio Service — versions 1.0.0.55

Weakness classification (CWE)

CWE-428 — Unquoted Search Path or Element

References

disclosure@vulncheck.com (exploit)
disclosure@vulncheck.com (product)
disclosure@vulncheck.com (third-party-advisory)

Frequently asked questions

What is CVE-2020-37252?: CVE-2020-37252 is a high-severity vulnerability in Realtek Audio Service, classified under Unquoted Search Path or Element. CVSS score: 7.8/10. Published 2026-06-19.
How severe is CVE-2020-37252?: High severity. CVSS v3 base score is 7.8 out of 10.