CVE-2026-22561

• Anthropic/Claude

  cpe:2.3:a:anthropic:claude:*:*:*:*:*:*:*:*

  Range: <1.1.3363

No patches discovered yet.

AI mechanics synthesis has not run for this CVE yet.

• trust.anthropic.com/resourcesnvdVendor Advisory

• The Boring Stuff is Dangerous Now
  Dark Reading · May 18, 2026
• &#x5b;Guest Diary&#x5d; New Malware Libraries means New Signatures, (Fri, May 15th)
  SANS Internet Storm Center · May 15, 2026
• How Dangerous Is Anthropic’s Mythos AI?
  Schneier on Security · May 14, 2026
• Microsoft’s WinUI agent plugin trims token use by over 70% during development
  Help Net Security · May 14, 2026
• AI models are getting better at replacing cybersecurity pros on certain tasks
  The Register Security · May 14, 2026
• Welcome to the vulnpocalypse, as vendors use AI to find bugs and patches multiply like rabbits
  The Register Security · May 13, 2026
• OpenAI’s GPT-5.5 is as Good as Mythos at Finding Security Vulnerabilities
  Schneier on Security · May 13, 2026
• Risky Business #837 -- GitHub Actions footgun claims TanStack
  Risky Business · May 13, 2026
• Fake Claude search results lure Mac users into ClickFix attack
  Malwarebytes Labs · May 12, 2026
• Claude Mythos Finds Only One Curl Vulnerability; Experts Divided on What It Really Means
  SecurityWeek · May 12, 2026
• Cookie thieves caught stealing dev secrets via fake Claude Code installers
  The Register Security · May 11, 2026
• 11th May – Threat Intelligence Report
  Check Point Research · May 11, 2026
• Hackers abuse Google ads, Claude.ai chats to push Mac malware
  BleepingComputer · May 10, 2026
• Why the approaching flood of vulnerabilities changes everything — and what to do about it
  Tenable Blog · May 8, 2026
• Zero Chaos: Scaling Detection Engineering at the Speed of Software, with Detection As Code
  Rapid7 Blog · May 8, 2026
• Snyk integrates Claude to advance AI-native application security
  Help Net Security · May 8, 2026
• Vulnerability in Claude Extension for Chrome Exposes AI Agent to Takeover
  SecurityWeek · May 8, 2026
• Anthropic response to 1-click pwn: Shouldn't have clicked 'ok'
  The Register Security · May 7, 2026
• 'TrustFall' Convention Exposes Claude Code Execution Risk
  Dark Reading · May 7, 2026
• Claude AI Guided Hackers Toward OT Assets During Water Utility Intrusion
  SecurityWeek · May 7, 2026
• An Adaptive Cyber Analytics UI for Web Honeypot Logs &#x5b;Guest Diary&#x5d;, (Wed, May 6th)
  SANS Internet Storm Center · May 7, 2026
• Google Chrome&#8217;s silent 4GB AI download problem [updated]
  Malwarebytes Labs · May 6, 2026
• Sysdig delivers cloud security that runs inside AI coding agents
  Help Net Security · May 6, 2026
• ServiceNow clears agents for landing with new AI control tower
  The Register Security · May 5, 2026
• TeamPCP Weekly Analysis: 2026-W18 (2026-04-27 through 2026-05-03), (Mon, May 4th)
  SANS Internet Storm Center · May 4, 2026
• 4th May – Threat Intelligence Report
  Check Point Research · May 4, 2026
• Thousands of Facebook accounts stolen by phishing emails sent through Google
  Malwarebytes Labs · May 4, 2026
• Claude Security enters public beta with Opus 4.7 vulnerability scanning and patching
  Help Net Security · May 4, 2026
• Lens Agents brings policy control to AI across cloud and desktop
  Help Net Security · May 4, 2026
• A week in security (April 27 &#8211; May 3)
  Malwarebytes Labs · May 4, 2026
• Brace for the patch tsunami: AI is unearthing decades of buried code debt
  The Register Security · May 2, 2026
• Metasploit Wrap-Up 05/01/2026
  Rapid7 Blog · May 1, 2026
• The Good, the Bad and the Ugly in Cybersecurity – Week 18
  SentinelOne Labs · May 1, 2026
• Vulnerability remediation: Match CVEs to asset owners in seconds with Tenable Hexa AI
  Tenable Blog · May 1, 2026
• Introducing Dynamic Workflows: durable execution that follows the tenant
  Cloudflare Blog · May 1, 2026
• OpenAI locks GPT-5.5-Cyber behind velvet rope despite slamming Anthropic for doing exactly that
  The Register Security · May 1, 2026
• Bridging the gap: How to integrate Claude Security into the Tenable One Exposure Management Platform
  Tenable Blog · Apr 30, 2026
• Anthropic Unveils Claude Security to Counter AI-Powered Exploit Surge
  SecurityWeek · Apr 30, 2026
• Wordfence Intelligence Weekly WordPress Vulnerability Report (April 20, 2026 to April 26, 2026)
  Wordfence Blog · Apr 30, 2026
• Claude Mythos Fears Startle Japan's Financial Services Sector
  Dark Reading · Apr 30, 2026
• New Wave of DPRK Attacks Uses AI-Inserted npm Malware, Fake Firms, and RATs
  The Hacker News · Apr 29, 2026
• GitHub: Zounds, a genuinely helpful AI-assisted bug report that isn't total slop! Here, Wiz, take this wad of cash
  The Register Security · Apr 29, 2026
• GitHub: Zounds, a genuinely helpful AI-assisted bug report that isn't total slop! Here, Wiz, take this wad of cash
  The Register Security · Apr 29, 2026
• Mastering agentic AI security through exposure management
  Tenable Blog · Apr 29, 2026
• Scam-checking just got a lot easier: Malwarebytes is now in Claude
  Malwarebytes Labs · Apr 29, 2026
• Claude Mythos Has Found 271 Zero-Days in Firefox
  Schneier on Security · Apr 29, 2026
• What Anthropic’s Mythos Means for the Future of Cybersecurity
  Schneier on Security · Apr 28, 2026
• After Mythos: New Playbooks For a Zero-Window Era
  The Hacker News · Apr 28, 2026
• Cursor-Opus agent snuffs out startup’s production database
  The Register Security · Apr 27, 2026
• Parsing Agentic Offensive Security's Existential Threat
  Dark Reading · Apr 27, 2026