Jump to the main content block
  1. Home
  2. Information Security
  3. Vulnerability Alert

【Security Advisory】Chromium-Based Browsers Contain High-Risk Security Vulnerabilities (CVE-2026-1861 and CVE-2026-1862); Please Verify and Apply Patches Promptly

publish date : 2026-02-24 update date : 2026-02-24

Source: Ministry of education information & communication security contingency platform

"" "" ""

Publication Number TACERT-ANA-2026021201020505 Publication Time 2026/02/12 13:47
Incident Type ANA-Vulnerability Alert Discovery Time 2026/02/12 13:47
Impact Level Medium  
[Subject]
【Security Advisory】Chromium-Based Browsers Contain High-Risk Security Vulnerabilities (CVE-2026-1861 and CVE-2026-1862); Please Verify and Apply Patches Promptly
[Content]
Forwarded from the National Institute of Cyber Security NISAC-200-202602-00000089

Researchers have identified high-risk security vulnerabilities (CVE-2026-1861 and CVE-2026-1862) in Chromium-based browsers, including Google Chrome, Microsoft Edge, Vivaldi, and Brave. The vulnerability types are Heap-based Buffer Overflow and Type Confusion, respectively. An unauthenticated remote attacker may exploit a specially crafted website to cause the browser to crash. Please verify and apply the necessary patches as soon as possible.

(Information Sharing Level: WHITE (Information content can be publicly disclosed)

[Affected Platform]
Google Chrome versions prior to 144.0.7559.132 (not including 144.0.7559.132)

Microsoft Edge versions prior to 144.0.3719.115 (not including 144.0.3719.115)

Vivaldi versions prior to 7.7.3851.58 (not including 7.7.3851.58)

Brave versions prior to 1.86.148 (not including 1.86.148)

[Recommended Actions]
1.Please update Google Chrome to version 144.0.7559.132 (including 144.0.7559.132) or later:

https://support.google.com/chrome/answer/95414?hl=zh-Hant

2.Please update Microsoft Edge to version 144.0.3719.115 or later:

https://support.microsoft.com/zh-tw/topic/microsoft-edge-%E6%9B%B4%E6%96%B0%E8%A8%AD%E5%AE%9A-af8aaca2-1b69-4870-94fe-18822dbb7ef1

3.Please update Vivaldi to version 7.8.3925.62 (including 7.8.3925.62) or later:

https://help.vivaldi.com/desktop/install-update/update-vivaldi/

4.Please update Brave to version 1.86148 (including 1.86148) or later:

https://community.bravecom/t/how-to-update-brave/384780

[Reference]
1. https://support.google.com/chrome/answer/95414?hl=zh-Hant

2. https://support.microsoft.com/zh-tw/topic/microsoft-edge-%E6%9B%B4%E6%96%B0%E8%A8%AD%E5%AE%9A-af8aaca2-1b69-4870-94fe-18822dbb7ef1

3. https://help.vivaldi.com/desktop/install-update/update-vivaldi/

4. https://community.brave.com/t/how-to-update-brave/384780

5. https://chromereleases.googleblog.com/2026/02/stable-channel-update-for-desktop.html

6. https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-1861

7. https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-1862

8. https://vivaldi.com/blog/desktop/minor-update-7-8/

9. https://community.brave.app/t/release-channel-1-86-148/649020

10. https://nvd.nist.gov/vuln/detail/CVE-2026-1861

11. https://nvd.nist.gov/vuln/detail/CVE-2026-1862
(This notification is for informational purposes only and does not constitute a cybersecurity incident).
If you have questions or suggestions regarding this notification, please feel free to contact us.
Ministry of education information & communication security contingency platform
Website: https://info.cert.tanet.edu.tw/
Phone: +886-7-5250211
Internet Phone: 98400000
E-Mail: service@cert.tanet.edu.tw
Organizer: Computer Center
Click Num:
Print