Cyber Resilience

CVE-2026-22561

Medium

Published: 31 March 2026

Published
31 March 2026
Modified
10 May 2026
KEV Added
Patch
CVSS Score v4 4.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0018 7.4th percentile
Risk Priority 35 floored blend · peak EPSS

Summary

CVE-2026-22561 is a medium-severity Uncontrolled Search Path Element (CWE-427) vulnerability in Anthropic Claude. Its CVSS base score is 4.7 (Medium).

Operationally, exploitation aligns with the MITRE ATT&CK technique DLL (T1574.001); ranked at the 7.4th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

This vulnerability is AI-related — categorised as APIs and Models; in the Supply Chain and Deployment risk domain.

The strongest mitigations our analysis identified are NIST 800-53 CM-14 (Signed Components) and CM-6 (Configuration Settings).

Deeper analysis

CVE-2026-22561 is a vulnerability involving uncontrolled search path elements in the Anthropic Claude for Windows installer, specifically Claude Setup.exe versions prior to 1.1.3363. It enables local privilege escalation through DLL search-order hijacking, classified under CWE-427. The installer loads certain DLLs, such as profapi.dll, from its own directory after User Account Control (UAC) elevation, which can be exploited if a malicious DLL is placed alongside the executable.

A local attacker can exploit this vulnerability by planting a malicious DLL in the same directory as the installer executable. Exploitation requires the victim to run the installer, which prompts for UAC elevation and user interaction (UI:R), granting local access (AV:L) with no prior privileges (PR:N) and low complexity (AC:L). Successful hijacking allows arbitrary code execution with elevated privileges, resulting in high confidentiality, integrity, and availability impacts (CVSS 7.8).

Anthropic has published an advisory with details on the vulnerability at https://trust.anthropic.com/resources?s=1cvig6ldp3zvuj1yffzr11&name=cve-2026-22561-dll-search-order-hijacking-in-claude-for-windows-installer. The issue affects versions prior to 1.1.3363, indicating that updating to 1.1.3363 or later resolves the vulnerability.

OWASP Top 10 for Web (2025)

EU & UK References

Vulnerability details

Uncontrolled search path elements in Anthropic Claude for Windows installer (Claude Setup.exe) versions prior to 1.1.3363 allow local privilege escalation via DLL search-order hijacking. The installer loads DLLs (e.g., profapi.dll) from its own directory after UAC elevation, enabling arbitrary code…

more

execution if a malicious DLL is planted alongside the installer.

CWE(s)

AI Security AnalysisAI

AI Category
APIs and Models
Risk Domain
Supply Chain and Deployment
OWASP Top 10 for LLMs 2025
None mapped
Classification Reason
Matched keywords: anthropic, claude

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1574.001 DLL Stealth
Adversaries may abuse dynamic-link library files (DLLs) in order to achieve persistence, escalate privileges, and evade defenses.
Why these techniques?

Explicit DLL search-order hijacking (CWE-427) in Windows installer enables planting malicious DLL for local privilege escalation after UAC elevation.

Confidence: HIGH · MITRE ATT&CK Enterprise v19.0

CVEs Like This One

CVE-2025-33229Same product: Microsoft Windows
CVE-2026-3775Same product: Microsoft Windows
CVE-2025-15558Same product: Microsoft Windows
CVE-2022-28339Same product: Microsoft Windows
CVE-2024-55543Same product: Microsoft Windows
CVE-2025-57836Same product: Microsoft Windows
CVE-2024-55540Same product: Microsoft Windows
CVE-2026-35603Same product: Microsoft Windows
CVE-2024-48091Shared CWE-427
CVE-2025-21127Same product: Microsoft Windows

Affected Assets

anthropic
claude
≤ 1.1.3363

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly mitigates the vulnerability by requiring timely flaw remediation through updating the Claude Setup.exe installer to version 1.1.3363 or later, which resolves the DLL search-order hijacking.

prevent

Prevents execution of malicious DLLs like a planted profapi.dll by requiring digital signatures for software components prior to installation and execution.

prevent

Mitigates DLL search-order hijacking by enforcing secure configuration settings such as Safe DLL Search Mode, which prioritizes system directories before the installer's current directory.

References