【Vulnerability Alert】Chromium-Based Browsers Contain 60 High-Risk Security Vulnerabilities. Please Verify and Apply Patches as Soon as Possible.

publish date : 2026-04-24 update date : 2026-04-24

Source: Ministry of education information & communication security contingency platform

"" "" ""

Publication Number TACERT-ANA-2026041708040505 Publication Time 2026/04/17 08:54
Incident Type ANA-Vulnerability Alert Discovery Time 2026/04/17 08:54
Impact Level Medium  
[Subject]
【Vulnerability Alert】Chromium-Based Browsers Contain 60 High-Risk Security Vulnerabilities. Please Verify and Apply Patches as Soon as Possible.
[Content]
Forwarded from the National Institute of Cyber Security NISAC-200-202604-00000008

Researchers have identified 60 high-risk security vulnerabilities in Chromium-based browsers such as Google Chrome, Microsoft Edge, Vivaldi, and Brave (CVE-2026-5858 through CVE-2026-5915, CVE-2026-5918, and CVE-2026-5919). The vulnerability types include heap-based buffer overflow and use-after-free. In the most severe cases, an unauthenticated remote attacker may exploit a specially crafted HTML page to cause memory corruption or execute arbitrary code. Please verify and apply the necessary patches as soon as possible.


(Information Sharing Level: WHITE (Information content can be publicly disclosed)
[Affected Platform]
Google Chrome versions earlier than 147.0.7727.55
Microsoft Edge versions earlier than 147.0.3912.60
Vivaldi versions earlier than 7.9.3970.50
Brave versions earlier than 1.89.132
[Recommended Actions]
  1. Please update Google Chrome to version 147.0.7727.55 or later. https://support.google.com/chrome/answer/95414?hl=zh-Hant
  2. Please update Microsoft Edge to version 147.0.3912.60 or later. https://support.microsoft.com/zh-tw/topic/microsoft-edge-%E6%9B%B4%E6%96%B0%E8%A8%AD%E5%AE%9A-af8aaca2-1b69-4870-94fe-18822dbb7ef1
  3. Please update Vivaldi to version 7.9.3970.50 or later. https://help.vivaldi.com/desktop/install-update/update-vivaldi/
  4. Please update Brave to version 1.89132 or later. https://community.brave.com/t/how-to-update-brave/384780
[Reference]
1. https://support.google.com/chrome/answer/95414?hl=zh-Hant
2. https://support.microsoft.com/zh-tw/topic/microsoft-edge-%E6%9B%B4%E6%96%B0%E8%A8%AD%E5%AE%9A-af8aaca2-1b69-4870-94fe-18822dbb7ef1
3. https://help.vivaldi.com/desktop/install-update/update-vivaldi/
4. https://community.brave.com/t/how-to-update-brave/384780
5. https://help.opera.com/en/latest/crashes-and-issues/#updateBrowser
6. https://chromereleases.googleblog.com/2026/04/stable-channel-update-for-desktop.html
7. https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-5919
8. https://vivaldi.com/blog/desktop/desktop-updates/minor-update-five-7-9/
9. https://brave.com/latest/
(This notification is for informational purposes only and does not constitute a cybersecurity incident).
If you have questions or suggestions regarding this notification, please feel free to contact us.
Ministry of education information & communication security contingency platform
Website: https://info.cert.tanet.edu.tw/
Phone: +886-7-5250211
Internet Phone: 98400000
E-Mail: service@cert.tanet.edu.tw
Organizer: Computer Center