Rapid7 Metasploit Pro Local Privilege Escalation Vulnerability

Vulnerability

A local privilege escalation vulnerability has been identified in Rapid7 Metasploit Pro. This issue allows users to gain SYSTEM-level control on a Windows host. The vulnerability arises when the metasploitPostgreSQL service, initiated at startup, attempts to load an OpenSSL configuration file from a non-existent directory that is writable by standard users. By placing a crafted openssl.cnf file in this directory, an attacker can manipulate the high-privilege service into executing arbitrary commands. This exploitation enables an unprivileged user to bypass security measures and achieve full host compromise with the agent's SYSTEM-level access.

Impact

Exploitation of this vulnerability leads to unauthorized users gaining SYSTEM-level privileges on the affected Windows host, allowing for a complete compromise of the system.

Added: May 15, 2026, 3:44 AM

Updated: May 15, 2026, 3:44 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

4.2

remediation

0.0

relevance

8.3

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

4.2

remediation

0.0

relevance

8.3

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Rapid7 Metasploit Pro Local Privilege Escalation Vulnerability

Vulnerability

Impact

Affected Products

Rapid7 Metasploit Pro

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating