CVE-2020-37252

HIGH

Realtek Audio Service 1.0.0.55 Unquoted Service Path Privilege Escalation

Title source: cna

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-37252. PoCs published by Erika Figueroa.

AI-analyzed exploit summary This is a technical writeup detailing an unquoted service path vulnerability in Realtek Audio Service 1.0.0.55. It includes steps to identify the vulnerability and explains the potential impact of local privilege escalation.

Description

Realtek Audio Service 1.0.0.55 contains an unquoted service path vulnerability in RtkAudioService64.exe that allows local attackers to escalate privileges by injecting malicious code. Attackers can place executable files in the unquoted service path directory to execute arbitrary code with LocalSystem privileges during service startup or system reboot.

Exploits (1)

exploitdb WRITEUP

by Erika Figueroa · textlocalwindows

https://www.exploit-db.com/exploits/49015

View Code ZIP pw:eip

This is a technical writeup detailing an unquoted service path vulnerability in Realtek Audio Service 1.0.0.55. It includes steps to identify the vulnerability and explains the potential impact of local privilege escalation.

Classification

Writeup 90%

Attack Type

Lpe

Complexity

Moderate

Reliability

Theoretical

Target: Realtek Audio Service 1.0.0.55

Auth required

Prerequisites: Local access to the system · Ability to place executable files in the system root path

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1548 - Abuse Elevation Control Mechanism

devstral-2 · analyzed Jun 19, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit exploit

ExploitDB-49015

https://www.exploit-db.com/exploits/49015

Product product

Official Product Homepage

https://www.realtek.com/en/

Third Party Advisory third-party-advisory

VulnCheck Advisory: Realtek Audio Service 1.0.0.55 Unquoted Service Path Privilege Escalation

https://www.vulncheck.com/advisories/realtek-audio-service-unquoted-service-path-privilege-escalation

Scores

CVSS v3 7.8

EPSS 0.0012

EPSS Percentile 2.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-428

Status published

Products (1)

Realtek/Realtek Audio Service 1.0.0.55

Published Jun 19, 2026

Tracked Since Jun 19, 2026