ReportizFlow
Filtered by vendor Anthropic
Subscriptions
Filtered by product Claude
Subscriptions
Total
1 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2026-22561 | 2 Anthropic, Microsoft | 3 Claude, Claude Desktop, Windows | 2026-04-07 | 7.8 High |
| Uncontrolled search path elements in Anthropic Claude for Windows installer (Claude Setup.exe) versions prior to 1.1.3363 allow local privilege escalation via DLL search-order hijacking. The installer loads DLLs (e.g., profapi.dll) from its own directory after UAC elevation, enabling arbitrary code execution if a malicious DLL is planted alongside the installer. | ||||
Page 1 of 1.