THREAT OPS › Threat News › Weekly Metasploit Update: NTLM Relay Priv Esc, MCP Server Integration, Paperclip AI RCE Chain, and more
Weekly Metasploit Update: NTLM Relay Priv Esc, MCP Server Integration, Paperclip AI RCE Chain, and more
<p>This week's release includes five new modules, including a full unauthenticated RCE chain for Paperclip AI and a VS Code extension persistence technique. On the post-exploitation side, the new <span>windows/local/ntlm_relay_2_self</span> module coerces the local machine account to authenticate via OpenEncryptedFileRaw (WebDAV), relays that NTLM authentication to a Domain Controller's LDAP servi
MITRE ATT&CK techniques
Indicators of compromise
- CVE-2026-41679cve
- CVE-2026-41459cve
- CVE-2026-34413cve
- CVE-2026-34415cve
- CVE-2026-34414cve
- CVE-2026-46333cve
- https://attackerkb.com/search?q=CVE-2026-41679&referrer=blogurl
- https://attackerkb.com/search?q=CVE-2026-41459&referrer=blogurl
- https://attackerkb.com/search?q=CVE-2026-46333&referrer=blogurl
- https://docs.metasploit.com/url
- h00die.gr3y@gmail.comemail
- bootstrapbool@gmail.comemail
Original source: https://www.rapid7.com/blog/post/pt-metasploit-wrap-up-19-06-2026