Description
RealTimes Desktop Service 18.1.4 contains an unquoted service path vulnerability in the rpdsvc.exe binary that allows local attackers to escalate privileges. Attackers can place malicious executables in unquoted path directories to execute arbitrary code with LocalSystem privileges during service startup or system reboot.
Published: 2026-06-19
Score: 8.5 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability in RealTimes Desktop Service 18.1.4 is an unquoted service path flaw in the rpdsvc.exe binary. It allows a local attacker to place a malicious executable in a directory that is part of the unquoted service path, causing the service to launch that executable with LocalSystem privileges during startup or a reboot. This flaw enables the attacker to execute arbitrary code with system level authority. The weakness is classified under CWE-428, which denotes insecure configuration of a system resource that can lead to privilege escalation.

Affected Systems

RealTimes Desktop Service version 18.1.4 is affected. No other versions are listed as vulnerable. The flaw resides in the system service executable that runs locally on Windows machines where the service is installed.

Risk and Exploitability

The CVSS score of 8.5 indicates a high severity for local privilege escalation. EPSS data is unavailable and the vulnerability is not in the CISA KEV catalog, so no publicly known exploitation campaigns are reported. The likely attack vector is local; an attacker with user or application‑level access can exploit the flaw by placing a crafted executable in an unquoted path directory or by renaming an executable to a path that the service will resolve. If successful, the attacker gains LocalSystem rights, potentially compromising the entire host.

Generated by OpenCVE AI on June 19, 2026 at 21:01 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the vendor‑supplied patch for RealTimes Desktop Service 18.1.4 that removes the unquoted service path issue.
  • If no patch is currently available, open the Windows Services console, edit the rpdsvc service, and quote the executable path or move the service binary to a folder with a quoted path to prevent the service from resolving unquoted names during startup.
  • Restrict write permissions on the directories used by the service so that only trusted accounts can place executables there, thereby preventing an attacker from dropping a malicious binary into those locations.

Generated by OpenCVE AI on June 19, 2026 at 21:01 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 23 Jun 2026 02:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Sun, 21 Jun 2026 09:45:00 +0000

Type Values Removed Values Added
First Time appeared Real
Real realtimes Desktop Service
Vendors & Products Real
Real realtimes Desktop Service

Fri, 19 Jun 2026 18:15:00 +0000

Type Values Removed Values Added
Description RealTimes Desktop Service 18.1.4 contains an unquoted service path vulnerability in the rpdsvc.exe binary that allows local attackers to escalate privileges. Attackers can place malicious executables in unquoted path directories to execute arbitrary code with LocalSystem privileges during service startup or system reboot.
Title RealTimes Desktop Service 18.1.4 Unquoted Service Path Privilege Escalation
Weaknesses CWE-428
References
Metrics cvssV3_1

{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}

cvssV4_0

{'score': 8.5, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}


Subscriptions

Real Realtimes Desktop Service
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-06-23T02:07:29.458Z

Reserved: 2026-06-19T14:02:01.266Z

Link: CVE-2020-37251

cve-icon Vulnrichment

Updated: 2026-06-23T02:07:24.550Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-20T22:36:00Z

Weaknesses
  • CWE-428

    Unquoted Search Path or Element