Print - 【Vulnerability Alert】Chromium-based browsers contain 30 high-risk security vulnerabilities. Please confirm and perform patching as soon as possible.

【Vulnerability Alert】Chromium-based browsers contain 30 high-risk security vulnerabilities. Please confirm and perform patching as soon as possible.

publish date : 2026-05-08 update date : 2026-05-15

Source: Ministry of education information & communication security contingency platform

"" "" ""


Publication Number	TACERT-ANA-2026050605053535	Publication Time	2026-05-06 17:12:36
Incident Type	ANA-Vulnerability Alert	Discovery Time	2026-05-06 17:12:36
Impact Level	Medium
[Subject] 【Vulnerability Alert】Chromium-based browsers contain 30 high-risk security vulnerabilities. Please confirm and perform patching as soon as possible.
[Content] Forwarded from the National Institute of Cyber Security Information Security Message Alert NISAC-200-202605-00000001 Researchers have discovered that Chromium-based browsers such as Google Chrome, Microsoft Edge, Vivaldi, and Brave contain 30 high-risk security vulnerabilities (CVE-2026-7333 to CVE-2026-7361 and CVE-2026-7363). The types include Use After Free and Heap-based Buffer Overflow. In the most severe case, an unauthenticated remote attacker may induce a user to open a specially crafted HTML page, and then execute arbitrary code within the browser sandbox environment. Please confirm and perform patching as soon as possible. (Information Sharing Level: WHITE (Information content can be publicly disclosed)
[Affected Platform] Google Chrome versions earlier than 147.0.7727.137 (excluding) Microsoft Edge versions earlier than 147.0.3912.98 (excluding) Vivaldi versions earlier than 7.9.3970.60 (excluding) Brave versions earlier than 1.89.145 (excluding)
[Recommended Actions] 1. Please update the Google Chrome browser to version 147.0.7727.137 (inclusive) or later. https://support.google.com/chrome/answer/95414?hl=zh-Hant 2. Please update the Microsoft Edge browser to version 147.0.3912.98 (inclusive) or later. https://support.microsoft.com/zh-tw/topic/microsoft-edge-%E6%9B%B4%E6%96%B0%E8%A8%AD%E5%AE%9A-af8aaca2-1b69-4870-94fe-18822dbb7ef1 3. Please update the Vivaldi browser to version 7.9.3970.60 (inclusive) or later. https://help.vivaldi.com/desktop/install-update/update-vivaldi/ 4.Please update the Brave browser to version 1.89145 (inclusive) or later. https://community.brave.com/t/how-to-update-brave/384780
[Reference] 1. https://support.google.com/chrome/answer/95414?hl=zh-Hant 2. https://support.microsoft.com/zh-tw/topic/microsoft-edge-%E6%9B%B4%E6%96%B0%E8%A8%AD%E5%AE%9A-af8aaca2-1b69-4870-94fe-18822dbb7ef1 3. https://help.vivaldi.com/desktop/install-update/update-vivaldi/ 4. https://community.brave.com/t/how-to-update-brave/384780 5. https://chromereleases.googleblog.com/2026/04/stable-channel-update-for-desktop_28.html 6. https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-7335 7. https://vivaldi.com/blog/desktop/minor-update-eight-7-9/ 8. https://brave.com/latest/

(This notification is for informational purposes only and does not constitute a cybersecurity incident).
If you have questions or suggestions regarding this notification, please feel free to contact us.
Ministry of education information & communication security contingency platform
Website: https://info.cert.tanet.edu.tw/
Phone: +886-7-5250211
Internet Phone: 98400000
E-Mail: service@cert.tanet.edu.tw

Organizer: Computer Center