Local Privilege Escalation in Rapid7 Insight Agent for Windows
CVE-2026-6482

8.5HIGH

Key Information:

Vendor: Rapid7
Status: Insight Agent
Vendor: CVE Published:; 17 April 2026

What is CVE-2026-6482?

The Rapid7 Insight Agent, specifically versions greater than 4.1.0.2, contains a vulnerability that allows local privilege escalation on Windows systems. When started, the agent service tries to load an OpenSSL configuration file from a non-existent directory which is writable by standard users. This vulnerability can be exploited by an attacker who creates a malicious 'openssl.cnf' file, tricking the high-privilege service into executing arbitrary commands. As a result, unprivileged users can bypass existing security measures and obtain complete control of the host under the agent's SYSTEM-level permissions.

Affected Version(s)

Insight Agent Windows 0 < 4.1.0.2

References

https://docs.rapid7.com/insight/release-notes-2026-april/...

CVSS V4

Score:

8.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 17, 2026
Vulnerability Reserved
Apr 17, 2026

Credit

Dell Security Assurance Team

CVE-2026-6482 Data

JSON