MEDIUM
Anthropic
CVE published 2026-03-31
CVE-2026-22561
CVE-2026-22561 is a Windows installer weakness in Anthropic Claude Setup.exe versions prior to 1.1.3363. The issue is an uncontrolled search path element / DLL search-order hijacking problem: after UAC elevation, the installer can load DLLs from its own directory, so a malicious DLL placed alongside the installer may be executed in a privileged context. The vulnerability is rated medium severity in NVD an [truncated]